Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
277
Views
0
Helpful
0
Replies

Core switch migration across DC

Da ICS16
Level 1
Level 1

‎01-09-2024 08:04 PM - last edited on ‎01-09-2024 08:28 PM by Cisco Employee

Dear Community,

We have ISE Nodes locate with different DC using VXLAN the same subnet.

- Node1 as PAN locates at DC-01

- Node2 as Secondary Node and Node3 as pxGrid  are locate at DC-02

Scenario: In case core switch has reach resource limited and be ready to prevent unexpected incident

and cannot support to add more firewall rule.

 

Current practice:  Core switch role as Routing and Filter traffic

- Core Switch -> Server switch 

 

Plan change server network: Core Switch role as only Routing between DC1 - DC2. Firewall role as only Filter traffic

- Core Switch -> Firewall -> Server switch

So mean that we plan to in place Firewall between Core Switch and Server switch on both DCs.

Different range IP subnet.

 

1. How could we move this case without impact for all ISE Node with across different DCs?

2. Require to make change on ISE Node level or not? If yes, how to do it step by step? If No, why?

3. Do we have alternative way to do on Core switch instead? If yes, how to achieve it?

 

Remark: We want to ensure our ISE Node1 at DC1 able handle daily operation and functionality.

Well appreciated for supporting.

 

Best Regards,

 

 

 

 

 

0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents