Hello,
Looking for how to setup L3out (internet access) with checkpoint firewalls in a multipod environment. Each pod has a checkpoint firewall (active-standby mode, the heartbeat will traverse the ACI Fabric).
The checkpoint firewalls can be dua...
Hey,I am not a fw guy either , however you should have a separate bond interface just to do your peering with with the ACI fabric (you could use the common tenant to create a shared L3 out),so your internal interface will keep vlan 155 and will have...
Hey,
To make sure my understanding is correct, vlan 155 is used for sync in the ClusterXL or is this the vlan that you use to setup your peering between the fw and the fabric?
Normally you would create a svi with a specific vlan encapsulation for...
Hey ,
Not sure I understand the full picture what you are trying to achieve, technically adding a 3rd firewall to a HA setup does not matter, I assume your "sync" interface is in plan 155 ?
You are speaking about ACI domains, are you referring to...
Hi Welkin,
Top of mind what I am seeing is :
L3Out deployment with HA firewall cluster in a multipod environmentMigration from legacy L2 stretched vlans architecture (spanning multiple DC's) towards ACI Fabric (from vlan=bd=epg to bd with differe...
