In this post, I will show how to Integrate Cisco Cloud ACI Fabric with Native Azure APIM. From cAPIC release 5.1.2 Native Azure Services are supported for cAPIC integration. Previous to this release EPGs were identified by label matching only (ip /region/custom label). For that reason, Native Azure Service support was not possible. This meant … More Cisco cAPIC / Native Azure API Management for serverless Architecture integration
In this post, I will cover a full Azure Kubernetes Service Integration Practical deployment with File Share Services for Apps. We will cover the following topics: Cisco cAPIC/Azure AKS integration (step by step) Creating File share to be used the K8s apps (we’ll spin up a simple nginx deployment with 2 replicas and load the … More Cisco cAPIC / Azure Kubernetes Service Integration with Azure File Share Services for Apps
I was recently asked this question by a customer and I’m documenting how to do this for the benefit of everyone. Before proceeding let’s gather all the items that we will need to make this happen. Update 10/23/2020: For MSO (on SE) certs the last action is to activate the key-ring. Unfortunately, that part will … More How to apply a cert to the ASE version of MSO?
I’m bringing up this page to keep a running list of ACI bookmarks that are really worth reading. If you are working with ACI these are a must read. My colleagues and I will add to this list over the course of time. So, please visit frequently. Everything you want to know about ACI Contracts … More Good ACI References Worth Bookmarking
Added on 11/24/2020: Interesting discussion on One Time Password with Ansible that customer pointed out. Please see bottom of post update for L3Out was added on 10/8/2020: Please see the bottom of the post. In this post, we will show how to automate Infrastructure provisioning with the MSO Controller running on Service Engine using Ansible. … More Getting Started: Cisco MSO With Ansible (updated: 11/24/2020)
In a previous article for Multinode Service Graphs with Horizontal Scaling of Firewalls for East/West traffic on Azure I had described and guided you step by step on how to configure and test that scenario. I have had quite a few folks reach out to me and request that I do a similar writeup for … More ACI/Cloud Extension Usage Primer (Azure) – Multi-Node Service Graph with North South Firewall Scaling using vNET peering and hosting service devices in HUB vNET (overlay-2)
DISCLAIMER – This post is not meant to take the place of a software recommendation process. Customers should still perform their own due diligence before selecting a software version for their own ACI Fabric. This post is meant to summarize the available ACI Software features, by release, and be used as a quick reference guide. … More ACI / APIC Software Guidance
Recently I had the pleasure to work with the fine folks at the Cisco Proof of Concept labs in Research Triangle Park, NC. Because of the unique times we live in, this normally onsite event was constrained to a virtual event, where we set on WebEx meetings throughout the week and ran through various test … More CPOC Series: Exploring ACI
In this video we explore using Policy Based Redirects to identify either a subset or ALL traffic between EPGs and forcing that traffic to an external device, in our case, an ASA FW. In our case, our ACI Fabric is the L3GW for all traffic. With the PBR feature, we are going to use an … More CPOC Series: ACI Service Chaining using Policy Based Redirect (PBR) for east-to-west traffic through an ASA FW
In this video we do some testing to see what happens if and when we lose all APICs in a cluster. Does dataplane traffic stop? When do we lose the ability to make configuration changes? What happens when traffic comes back online? Click on the video and let’s answer these questions!