Hi,
I am new to IOT area, so need some advise from the community.
Scenario - Green field setup
Setup - SDA, ISE, DNAC.
Logical topology (see attached)
(1) The BMS has both server component and client component (DDC controllers).
I will be connecting all these in the SDA fabric.
Server component, use static SGT, e.g SGT=10
Client component, use dynamic SGT (endpoint analytic with ISE device profiling)
(2) The CCTV has both server components (CCTV NVR, Admin workstation) and client component (CCTV camera)
I will be connecting all these in the SDA fabric.
Server component, use static SGT, e.g, SGT=20
Client component, use dynamic SGT (endpoint analytic with ISE device profiling)
I am thinking the server component may need Internet access for OS patching etc.
But the client components do not need Internet Access.
Using different SGT for server and client component allow me to control this.
Let me know if this makes sense or what is the common practice for deploying such systems in Cisco SDA.
Thanks
Eng Wee