cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
589
Views
0
Helpful
1
Replies

ACI Contract when doing Inter-VRF along with PBR

ImranSyed14455
Level 1
Level 1

I understand that when creating Contract between inter-VRF EPG , Policy is only pushed to Consumer leaf and not Provider leaf. But in the situation where there is contract between inter-VRF EPG and provider VRF has PBR , So in that event will provider have contract ? because when creating PBR contract is always on provider leaf and not consumer leaf.

1 Reply 1

Sergiu.Daniluk
VIP Alumni
VIP Alumni

Hi @ImranSyed14455 

Here is an example from the whitepaper:

Screenshot 2021-10-08 083846.png

 

VRF1 scope: 2949121

Consumer EPG pctag (VRF1): 49153

 

VRF2 scope: 2326532

Provider EPG pctag (VRF2): 25

 

In case of Inter-VRF PBR, after the service graph is deployed, the consumer VRF instance (scope 2949121) has permit and redirect rules for inter-VRF traffic, and the provider VRF instance (scope 2326532) has a permit rule for intra-VRF traffic.

 

What is important to observe in the zoning rules, is that there are two rules one for Consumer (49153) to Provider (25) and another one from Provider (25) to consumer (49153).

 

This example is taken from PBR whitepaper, which I would recommend you reading if you would like to have a better understanding of what happens under the hood: https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-739971.html 

 

Stay safe,

Sergiu

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: