07-23-2021 02:25 AM
Hi Team ,
what all configurations need to be removed from ACI when the EP which connects to the LEAF interface is decommissioned ?
In the below example : EP1 is connected to eth1/2 interface of LEAF-1 ,So EP1 will be disconnected from eth1/2 , in this case what all configuration need to be removed from ACI .
Solved! Go to Solution.
07-23-2021 05:35 AM - edited 07-23-2021 05:35 AM
This is going to be a "It depends" type of answer. If this is a bare metal Endpoint, you'll need to at min. to remove:
-Static Path binding from it's assigned EPG
-Interface Profile Port Selector for the interface
-Interface Policy Group it was using (if no longer used by other EPs)
Additional cleanup may be required:
-If it's the last endpoint for that EPG and the EPG is no longer needed, the EPG can be be removed
-If it's the last EPG in the Application Profile, the AP can be removed
-If the VLAN assigned to the static path binding in the EPG is no longer need, that ID can be removed from the VLAN Pool range
-If the VLAN pool is no longer needed/used, you can remove the VLAN pool itself
-If the AEP is no longer needed by other policy groups, you can remove that
-If the Phys. Domain is no longer needed by other AEPs, you can remove the domain
As you can see you just have to go through the policy chain and remove all the pieces.
Since many policies can be re-used, just need to ensure they're not being used elsewhere. Whenever in doubt use the "Show Usage" button at the bottom of most policy screens to confirm:
Robert
07-23-2021 05:35 AM - edited 07-23-2021 05:35 AM
This is going to be a "It depends" type of answer. If this is a bare metal Endpoint, you'll need to at min. to remove:
-Static Path binding from it's assigned EPG
-Interface Profile Port Selector for the interface
-Interface Policy Group it was using (if no longer used by other EPs)
Additional cleanup may be required:
-If it's the last endpoint for that EPG and the EPG is no longer needed, the EPG can be be removed
-If it's the last EPG in the Application Profile, the AP can be removed
-If the VLAN assigned to the static path binding in the EPG is no longer need, that ID can be removed from the VLAN Pool range
-If the VLAN pool is no longer needed/used, you can remove the VLAN pool itself
-If the AEP is no longer needed by other policy groups, you can remove that
-If the Phys. Domain is no longer needed by other AEPs, you can remove the domain
As you can see you just have to go through the policy chain and remove all the pieces.
Since many policies can be re-used, just need to ensure they're not being used elsewhere. Whenever in doubt use the "Show Usage" button at the bottom of most policy screens to confirm:
Robert
07-28-2021 12:45 PM
Thank you @Robert Burns
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: