Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,
I recently started enforcing policies with Cisco Secure Workloads. When I check Policy Analysis, I see Policy Categories of "permited:rejected" or "rejected:permited". It seems that the analysis reads it as traffic is allowed or rejected one...
Hello,One thing I found with Secure Endpoints policy updates is that the connector will only update the policy, if the serial number is higher than the policy serial number on the connecter. If you make changes to an exclusion, allow, block list, th...
Hello,I'm trying to add a static route, 10.6.8.0/24, to point to an ASA with an interface in an EPG called LAN_VLAN_100 (BD subnet is 172.16.100.0/22). The ASA's interface IP is 172.16.103.201. This is a non L3 Out. The static route shows up in t...
I'm in the middle of a migration from Nexus 7K to 5K to Cisco ACI. When we move servers over to copper Leafs, N9K-C93216TC-FXs, most of the time it seams that only one port comes up on the server. The other port remains in the down/not-connected st...
Hello,I didn’t create the static route in the EPG. I created the static route within the L3 out to reach an IP in the EPG. But from what you’re saying I would still need an L3 out because I can’t set a route to reach a subnet behind an endpoint in an...
I posted the VPC policy above. It seems like server side to me but it's happened on different servers with different NIC cards. We disconnect from the 7K/5Ks and plug right into the ACI leafs. Less than 5 minutes. We'll test the static port-chann...
