About Antonio Macia

Antonio Macia · 06-10-2024

Hi,In the same way that ACI, when integrated with Kubernetes can load balance outside requests to a particular exposed service, is it possible to manually configure ACI for basic L3/L4 load-balancing of regular of servers, announcing the /32 IP to th...

Antonio Macia · 05-16-2024

Hi,I have a router with two WAN interfaces towards to different ISPs. Each ISP is in active/stand-by using floating default routes so, there is only one active default route in the routing table. For the nat I have two NAT overload statements using t...

Antonio Macia · 01-03-2024

Hi, I have two different tenants with a VRF on each one and a tag assigned at the VRF level. All the prefixes generated in a particular VRF are tagged. When the prefixes originated in one VRF are learned by the other VRF, the tag is overwritten. Is i...

Antonio Macia · 12-28-2023

Hi,I want to apply a route-map that matches prefixes coming in over a L3out with a particular route tag in OSPF, however the match rules only allow BGP communities or prefixes. Is this not possible on ACI?Thanks.

Antonio Macia · 09-20-2023

Hi,How do I upload a NVM XML profile so it is deployed by ISE to the AnyConnect clients? Since there is not a specific "NVM Profile" option when adding a new resource, should I select the generic "Agent Resources From Local Disk", then "Customer Cre...

Antonio Macia · 05-16-2024

Hi Richard,As you can see in the configuration I pasted above, the NAT are simple statements.

Antonio Macia · 05-16-2024

Hi Dan,So you mean that at some point the backup link came active and the NAT entries were created and, when the original active ISP came back as primary again, since the NAT entries are already present, the traffic keep using the backup ISP even if ...

Antonio Macia · 05-16-2024

Hi MHM, The configuration is quite straightforward:interface GigabitEthernet0/0/0 description Active ISP ip address 1.1.1.2 255.255.255.255 ip nat outside ip access-group 1 in load-interval 30 negotiation auto ip virtual-reassembly!interface GigabitE...

Antonio Macia · 01-03-2024

Hi,I would perform the route tag match on the intermediate L3 device which allows me to math on OSPF tags, but for that the original tag must remain intact.

Antonio Macia · 09-21-2023

Thanks @Milos_Jovanovic ,We are running 3.1. They might have made it generic as you mentioned.Regards.

Member Since	‎01-18-2010 02:18 PM
Date Last Visited	‎06-11-2024 01:03 AM
Posts	239
Total Helpful Votes Received	29

User Statistics

User Activity

Leveraging ACI native load-balancing

Source NAT using wrong outside interface

Keep OSPF prefix tag across VRFs in ACI

Match rule for route tag

Adding NVM XML into ISE for AnyConnectProfile

Re: Source NAT using wrong outside interface

Re: Source NAT using wrong outside interface

Re: Source NAT using wrong outside interface

Re: Keep OSPF prefix tag across VRFs in ACI

Re: Adding NVM XML into ISE for AnyConnectProfile