Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We use AAEPs a lot and we add EPGs to them with particular vlan tagging. Basically treat AAEPs as old Nexus switch port profiles used to be. This works lovely but now we have a requirement to decommission some of EPGs (vlans). How do I find all AAEPs...
We have SDA deployment with ISE. For authentication we use mainly MAB. Here is how ISE is configured:Mac addresses are (manually) added to Endpoint Identity GroupsPolicy sets include rules with conditions ‘IndentityGroup-Name EQUALS …’Policy set rule...
We have datacenter network with row end switches (N5K) at each row of the racks and FEX extenders (N2K) as top-of the rack switches. We use port profiles on N5K's heavily to identify different kind of end user devices and assign vlans configuration t...
thanks a lot @RedNectar , this was exactly what I was looking for and yes, your assumption was correct that I was only interested in EPGs that are linked directly to an AAEP
Thanks for the reply. For normal IP Phones we of course use voice vlan and that works fine with ISE authentication. For the other devices that I listed above we must use access vlans as they have nothing to do with our voice vlan. We are not trying t...
Hi @RedNectar The testing was going well until I tried configuring Port Channels and Virtual Port Channels. As you explained in your blog ''single PCIPG or VPCIPG can only refer to a set of ports that define a single Port Channel or Virtual Port Chan...
Thank you @RedNectar this is very useful! I will test it immediately on our networks and see if I get any operational issues.My immediate concern is that some of our vlans on legacy network are in use by multiple Nexus port-profiles. Following your e...
This is really helpful, I was reading @Ruben Cocheno reply and was actually googling the difference between AAEP and AEP. Thanks a lot for clearing the fog!
