Author: Soumitra Mukherji

Cisco Cloud Network Fabric Install Google Cloud with BGP-EVPN Support

April 29, 2023

Table of Contents: Introduction Quick Refresher of Cisco Cloud Network Controller 2a. Unified Object Mapping for CCNC CCNC Installation Guide Overview 3a. CCNC GCP Install Steps 3b. CCNC GCP Pre-requisities 3.c.CCNC GCP install from Marketplace CCNC GCP First Time Setup Onboarding CCNC and APICs to Nexus Dashboard and managing from Nexus Dashboard Orchestrator Tenant onbaording … More Cisco Cloud Network Fabric Install Google Cloud with BGP-EVPN Support

CNC Fabric Brownfield Import With Overlapping Subnets

March 7, 2023

Introduction Dealing with overlapping Subnets Verification References Introduction When importing a brownfield infrastructure from cloud (AWS/Azure/GCP), it is not a given that the brownfield infrastructure has a unique IP subnet compared to what you already have in your existing CNC Fabric Tenants (onCloud/onPrem). In this short writeup I will go through how to import a … More CNC Fabric Brownfield Import With Overlapping Subnets

Cisco Nexus 9364C-GX Convertible ACI Leaf OR Spine and Discovery Tips

February 16, 2023

Table of Contents: Introduction Adding 9364C-GX switch to existing ACI Fabric Adding N9364C-GX switch as a Spine during brand new/initial ACI Fabric deployment References Introduction Cisco Nexus 9364C-GX can be used as either a ACI Spine or ACI leaf, giving you great flexibility. However, you should be aware of how to complete Fabric Discovery / … More Cisco Nexus 9364C-GX Convertible ACI Leaf OR Spine and Discovery Tips

Consuming AWS Native Services from applications running on onPrem ACI Fabric

January 26, 2023

Table of Contents: Introduction Native Service examples on AWS shown in this writeup Overall Example Topology & Explanation Route53 Private Hosted Zone setup for oncloud.com CoreDns Install and setup for onprem.com Route53 Resolver Inbound Endpoint Route53 Resolver Outbound Endpoint S3 VPC Interface Endpoint EC2 VPC Interface Endpoint SQS VPC Interface Endpoint References Introduction Customers using … More Consuming AWS Native Services from applications running on onPrem ACI Fabric

Shared VPC Subnets across AWS accounts with ACI/CNC Fabric

January 13, 2023

Table of Contents: Introduction High Level Architecture for sharing subnets across AWS accounts Testing For Reachability References Introduction Sometimes it may be desired to stretch subnets across AWS VPCs in different AWS accounts. This could be a requirement for some sort of application High Availability or it could be a requirement to segregate administrative responsibilities … More Shared VPC Subnets across AWS accounts with ACI/CNC Fabric

NDO/CNC Fabric Integration with AWS GWLB for protected apps

October 10, 2022

Table of Contents: Introduction High Level Architecture for GWLB 2.a.Routing Table Discussion 2.b. Packet Flow from Internet to Protected APP 2.c. Packet Flow: East/West to Protected APP Integration of GWLB topology with NDO/CNC Fabric 3.a. Discussion on Importing App VPC into CNC 3.b. Packet Flow from outside VPC to Protected APP 3.c. Routing across TGW … More NDO/CNC Fabric Integration with AWS GWLB for protected apps

Workload Mobility with Cloud Network Controller on AWS

September 23, 2022

Table of Contents: Introduction How to implement Active/Standby VPCs Workflow Needed to accomplish Active to Standby Switchover References Introduction For Critical Applications running in AWS you would normally place your workload in multiple zones and even multiple regions. Depending on the application, you could use Application Load Balancers, Network Load Balancers or Global Accelerators to … More Workload Mobility with Cloud Network Controller on AWS

Fully Managed AWS Brownfield Integration to Cloud ACI

September 22, 2022

Table of Contents: Introduction What we will show in this writeup Demo Topology Implementation Steps 4.a.Prerequisites 4.b.Importing in the Brownfield VPC into ACI Fabric 4.c.Importing the VRF from CNC to NDO 4.d.Observe in AWS References Introduction Previously, I had written an article on how to integrate AWS Brownfield VPC into Cloud ACI Fabric. At the … More Fully Managed AWS Brownfield Integration to Cloud ACI

Understanding RBAC for Nexus Dashboard Orchestrator

September 14, 2022

Table of Contents: Introduction Quick Refresher for RBAC rules for APIC 2.a.Defining the Provider 2.b.Creating Login Domain 2.c.Defining a role 2.d.Defining a Security Domain 2.e.Tie in Tenant to Security Domain 2.f. Configure AV Pairs in Radius Server 2.g. Testing out the configuration RBAC for NDO 3.a. Create Login Domain and tie to Radius Server 3.b. … More Understanding RBAC for Nexus Dashboard Orchestrator

Cloud Network Controller (previously cAPIC) Access Policies

September 12, 2022

Table of Contents: Introduction Access Policy Details 2.a.Global Level Access Policies 2.b.Account/Tenant Level Access Policies 2.c.VPC Level Access Policies 2.d.Subnet Level Access Policies References Introduction This writeup will explain the purpose for Access Policies from cAPIC release 25.0.4. If you recall, I had written an article previously on Cloud ACI 25.0.2 AWS Brownfield Integration to … More Cloud Network Controller (previously cAPIC) Access Policies