-
Recent Posts
Archives
- December 2020
- October 2020
- September 2020
- August 2020
- June 2020
- May 2020
- April 2020
- March 2020
- January 2020
- December 2019
- November 2019
- July 2019
- May 2019
- December 2018
- October 2018
- August 2018
- June 2018
- May 2018
- March 2018
- July 2017
- June 2017
- May 2017
- March 2017
- December 2016
- November 2016
- September 2016
- July 2016
- June 2016
- March 2016
- February 2016
- January 2016
- December 2015
- November 2015
- October 2015
- September 2015
- June 2015
- May 2015
- March 2015
- January 2015
- December 2014
- October 2014
- September 2014
- August 2014
- July 2014
- June 2014
- April 2014
- March 2014
- February 2014
- November 2013
- October 2013
- September 2013
- August 2013
- July 2013
- April 2013
- February 2013
- January 2013
- November 2012
- October 2012
- September 2012
- August 2012
- July 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- April 2011
- March 2011
- January 2011
- December 2010
- November 2010
- October 2010
Meta
Category Archives: ACI
New APIC ACI 5.1 firmware – Cisco have gone colloquial
This is an absolute affirmation that Cisco only cares about North American users Continue reading
Making the most of ACI when routing between tenants via a Firewall
I’ll show you how you can enhance your ACI migration by using some ACI features that are practically impossible to implement on L3 Firewalls Continue reading
Posted in ACI, ACI Tutorial, Cisco, configuration tutorial, Data Center, Data Centre
Comments Off on Making the most of ACI when routing between tenants via a Firewall
ACI Version mismatch Alert. Don’t use v5 on APIC and v14 on Leaves
If you are stuck with some first-generation switches in your ACI fabric, you might be tempted to upgrade your APIC to version 5.x – maybe even attempt to upgrade your leaf switches to the companion v15.x. Let me tell you why you don’t want to do that. Continue reading
Posted in ACI, Cisco, Data Center, Data Centre
Comments Off on ACI Version mismatch Alert. Don’t use v5 on APIC and v14 on Leaves
moquery – Cisco’s Mysterious Obscure ACI query utility
Take some of the mystery and obscurity out of Cisco’s Managed Object query. The final outcome will be that you will be equiped with the knowledge to write a script and adapt to suit your needs. Continue reading
Posted in ACI, ACI Tutorial, Cisco, Master Class
Tagged ACI, ACI Tutorial, APIC, Cisco, moquery
1 Comment
ACI Inband Mangagment Route Leaking Kludge
When I was challenged with this: Hi @RedNectar , Right now I have a simple contract that allows SSH only: Scope set to global. TCP dst 22. “Both directions” and “reverse port filters” enabled. This contract is provided by the inband EPG … Continue reading
Posted in ACI, aci inband management, ACI inband management tutorials, ACI Tutorial, Cisco
Tagged ACI, ACI configuration, ACI In-Band, ACI inband
2 Comments
Resolution Immediacy and Deployment Immediacy – ACI Master Class
When configuring ACI, have you ever wondered what those Resolution Immediacy options [Immediate | On Demand | Pre-provision] and the Deployment Immediacy options [Immediate | On Demand] do? Continue reading
Posted in Access Policy Chain, ACI, ACI Tutorial, Cisco, Master Class, Nexus 9000
Tagged deployment immediacy, deployment immediacy best practice, resolution immediacy, resolution immediacy best practice
Comments Off on Resolution Immediacy and Deployment Immediacy – ACI Master Class
ARP Gleaning – ACI Master Class
The purpose of these Gleaning ARPs is simply to “tickle” the target station into sending a packet – not because the gateway needs the MAC address of the target! Continue reading
Posted in ACI, ACI Tutorial, Cisco, Master Class
Tagged ACI, ACI Tutorial, ARP Flooding, ARP Gleaning
7 Comments
ISIS, COOP, BGP and MP-BGP in Cisco ACI
Let me start with a picture. Imagine a simple 2leaf/2spine topology with HostA attached to to Leaf1 and with HostB attached to to Leaf2. Enter IS-IS. The leaves and spines will exchange IS-IS routing updates with each other so that Leaf1 sees that it has two equally good paths to reach Leaf2, and Leaf2 sees that it has two equally good paths to reach Leaf1. Now think about the hosts. This is where COOP comes in. BGP is not needed until an external router is connected. Continue reading
Posted in ACI, ACI configuration, APIC, Cisco, Data Center, Data Centre, EPG, L3 Out, L3out
Tagged ACI, ACI configuration, APIC
Comments Off on ISIS, COOP, BGP and MP-BGP in Cisco ACI
Non overlapping VTEP IP addresses in Cisco ACI
Cisco recommends that “The TEP IP address pool should not overlap with existing IP address pools that may be in use by the servers (in particular, by virtualized servers).”
Let me tell you a reason much closer to reality why you might want to avoid overlapping your Cisco ACI TEP addresses with your locally configured addressing scheme. Continue reading
Posted in ACI, ACI configuration, APIC, Cisco, Data Center, Data Centre
Tagged ACI, ACI configuration, ACI inband, aci oob, APIC
Comments Off on Non overlapping VTEP IP addresses in Cisco ACI
Cisco ACI Naming Standards
Have you ever wondered what a L3 Out object is, when there no facility to create an object called L3 Out? I managed to solve this and many other ambiguities by developing and adopting a consistent naming standard. Continue reading
Posted in Access Policies, ACI, ACI configuration, Cisco, Data Center, Data Centre, Nexus, Nexus 9000, SDN, Software Defined Networking
Tagged ACI, APIC, Cisco, Nexus 9000, SDN
1 Comment
