I've seen a few videos and docs that describe it being done, but was wondering about those who actually use ACI to day to day in their data centers.
We have a fairly mature and stable production ACI system for our intranet server infrastructure, and I was wondering if I could extend this to our DMZ servers. All of the traffic forwarding between DMZ tiers would be handled by firewalls. ACI switch fabric would be doing purely L2 and L2-extension. Zero routing and no contracts. Also, all of the AppProf/EPG/VRF/BD would be contained within a separate tenant in ACI as well.
I would rather not stand up a whole separate fabric for this, and the stretched layer2 would be critical for delivering dmz capability where there's lack of internet infrastructure.
To participate in this event, please use the button to ask your questions
* Note: The link to join the discussion will be activated on March 8
All the knowledge of these four experts at your disposal!
Cisco Software-Defined Wide Area Network (SD-WAN...
Community Live- ISR1100X-4G and ISR1100X-6G Platform Overview and Architecture
(Live event - Tuesday, 23 March, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)-
This event will have place on Tuesday 23rd, March 2021 at 10:00 hrs PDT&...
Cisco Secure Network Access is helping IT to bridge the gap between what is essential to the business and what the network delivers and to build the next-generation campus network for an unplugged and uninterrupted experience.
Learn more about how these w...
(view in My Videos)
Community Live- New Additions to the Catalyst 8000 Family
(Live event - Tuesday, 23 February, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)-
This event had place on Tuesday 23rd, February 2021 at 10:00 hrs PDT...
This event had place on Tuesday 23rd, February 2021 at 10hrs PDT
Designed for an intent-based network, the Cisco Catalyst 8000 Edge Platforms family offers best-in-class networking and security combined. The platforms, available in b...