That's what I was originally thinking, but I think I confused myself with how it would be setup, specifically what to use as tunnel IP. If the Nexus were to receive say an ARP message, how would it know which tunnels to broadcast it to?

Here is the topology:

We have roughly 20 closets connecting to the Nexus switches in this fasion, and they would all need to transport each VLAN. I said we have 130 VLANs, but I think only about 20 are actually used.

[Note: the diagram does not show direct interconnectivity between Nexus core switches, but I am assuming it exists.]

The "simplest" way to span VLANs across wiring closets? Bridge those VLANs at L2 from the closet access switches all the way across the Nexus switches. That is, do not terminate those VLANs into L3 on the access switches before transporting across an L3 Nexus core, but keep them at L2 all the way. Here, simplicity of configuration is traded-off against operational aspects of a larger, flat L2 network (lack of scaling, difficulty in troubleshooting, size of failure domain, etc).

The next simplest way? Bridge those VLANs through the access switches and then terminate them as VLAN-based attachment circuits (ACs) on the Nexus switches into an L2VPN service such as EVPN/VXLAN. The L2VPN service is contained to the Nexus core, while native L2 is contained to the access switches and their uplinks to the core.

The least simple, if simplicity is measured by the extent of an L2VPN service? Extend the L2VPN down to the wiring closet where the L2 is encapsulated by VPLS in the access switches (VPLS being supported by the Cat3850 and not EVPN/VXLAN). The Nexus core becomes an IP/MPLS transport service and the uplinks from the access switches transport only IP/MPLS, no native L2. This appears to be your option of least resistance with the decision having been made previously to have only L3 in the access layer (though I am not sure that is consistent with your diagram showing HSRP in use, which implies L2 from the access to the core).

" The "simplest" way to span VLANs across wiring closets? Bridge those VLANs at L2 from the closet access switches all the way across the Nexus switches. That is, do not terminate those VLANs into L3 on the access switches before transporting across an L3 Nexus core, but keep them at L2 all the way. Here, simplicity of configuration is traded-off against operational aspects of a larger, flat L2 network (lack of scaling, difficulty in troubleshooting, size of failure domain, etc). "

This statement describes what we currently have. The Nexus switches are connected, just didn't add them. The Red links are L2 trunks. Currently, most medical equipment is being transported over the L2 trunks to the Nexus. L3 switches were added to the closets and things like phones, APs, printers, etc, were moved to those switches. The issues you stated are why I am looking at getting rid of those trunks/L2 links.

I agree with you on this as the best option as it doesn't require a re-design of a lot of things. Thanks for the input!