i have a new customer moving into my multi-tenant DC.the customer will have its own VRF but still wants further isolation within this VRF.they've got prod,dev and staging networks and will like to keep traffic strictly restricted within these areas.they also require some of these servers to be load-balanced and and some non-LBed.
i have ACE modules running A2(2.4) and my plan is to use PVLANs within this VRF to keep the different areas isolated but will the the ACE support these PVLANs (even on newer versions) or will i have to use ACLs to keep the real servers in PVLAN_1 from talking to the VIPs of PVLAN_2