Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
In our production tenant we have two vrfs;vrf-1 with multiple related bridge domains associated to L3out-1, which handles intertenant, and WAN traffic..vrf-2 with one (larger subnet - Advertised Externally) bridge domain; BD-2, associated to L3out-2,...
Hi,We have ISE 2.7.0.356 patch 9, with most of our switches on Cisco IOS XE Software, Version 16.12.05b, and some newer switches running 17.06.04For our LAN we would like the option to enable or disable all, or specific LLDP TLV advertisements, depen...
Hi,It was an ugly and cumbersome way thought up to get some insights into traffic flows within this open, any-any-allow, "spray-and-pray" tenant.Re-IP-address servers,Place them in a new EPG in VRF2, behind the L3out/external Firewall with an any-any...
Hi, Thanks for the input so far.It is a single tenant, with all EPG's in both VRF's currently having intertenant / WAN connectivity.There are some factors within this tenant that cause me to want this move;Currently we have on large application profi...
HiI hope this diagram helps.https://rickroersma.stackstorage.com/s/puSlR8d3natJq5Px Less complexity;Currently, one part of EPG to EPG traffic within this tenant, [all BD's in VRF-1 <---> BD-144 in VRF-2] uses only firewall rules, because of the L3out...
Thanks for your reply!What we are looking for is the ability to selectively NOT return certain attributes.Your confusion as to why I'm trying to achieve this is understandable, I myself would be fine with just a default set of returned attributes con...
