Author: Soumitra Mukherji

Consuming AWS Native Services from applications running on onPrem ACI Fabric

January 26, 2023

Table of Contents: Introduction Native Service examples on AWS shown in this writeup Overall Example Topology & Explanation Route53 Private Hosted Zone setup for oncloud.com CoreDns Install and setup for onprem.com Route53 Resolver Inbound Endpoint Route53 Resolver Outbound Endpoint S3 VPC Interface Endpoint EC2 VPC Interface Endpoint SQS VPC Interface Endpoint References Introduction Customers using … More Consuming AWS Native Services from applications running on onPrem ACI Fabric

Shared VPC Subnets across AWS accounts with ACI/CNC Fabric

January 13, 2023

Table of Contents: Introduction High Level Architecture for sharing subnets across AWS accounts Testing For Reachability References Introduction Sometimes it may be desired to stretch subnets across AWS VPCs in different AWS accounts. This could be a requirement for some sort of application High Availability or it could be a requirement to segregate administrative responsibilities … More Shared VPC Subnets across AWS accounts with ACI/CNC Fabric

NDO/CNC Fabric Integration with AWS GWLB for protected apps

October 10, 2022

Table of Contents: Introduction High Level Architecture for GWLB 2.a.Routing Table Discussion 2.b. Packet Flow from Internet to Protected APP 2.c. Packet Flow: East/West to Protected APP Integration of GWLB topology with NDO/CNC Fabric 3.a. Discussion on Importing App VPC into CNC 3.b. Packet Flow from outside VPC to Protected APP Tips for Configuration Section … More NDO/CNC Fabric Integration with AWS GWLB for protected apps

Workload Mobility with Cloud Network Controller on AWS

September 23, 2022

Table of Contents: Introduction How to implement Active/Standby VPCs Workflow Needed to accomplish Active to Standby Switchover References Introduction For Critical Applications running in AWS you would normally place your workload in multiple zones and even multiple regions. Depending on the application, you could use Application Load Balancers, Network Load Balancers or Global Accelerators to … More Workload Mobility with Cloud Network Controller on AWS

Fully Managed AWS Brownfield Integration to Cloud ACI

September 22, 2022

Table of Contents: Introduction What we will show in this writeup Demo Topology Implementation Steps 4.a.Prerequisites 4.b.Importing in the Brownfield VPC into ACI Fabric 4.c.Importing the VRF from CNC to NDO 4.d.Observe in AWS References Introduction Previously, I had written an article on how to integrate AWS Brownfield VPC into Cloud ACI Fabric. At the … More Fully Managed AWS Brownfield Integration to Cloud ACI

Understanding RBAC for Nexus Dashboard Orchestrator

September 14, 2022

Table of Contents: Introduction Quick Refresher for RBAC rules for APIC 2.a.Defining the Provider 2.b.Creating Login Domain 2.c.Defining a role 2.d.Defining a Security Domain 2.e.Tie in Tenant to Security Domain 2.f. Configure AV Pairs in Radius Server 2.g. Testing out the configuration RBAC for NDO 3.a. Create Login Domain and tie to Radius Server 3.b. … More Understanding RBAC for Nexus Dashboard Orchestrator

Cloud Network Controller (previously cAPIC) Access Policies

September 12, 2022

Table of Contents: Introduction Access Policy Details 2.a.Global Level Access Policies 2.b.Account/Tenant Level Access Policies 2.c.VPC Level Access Policies 2.d.Subnet Level Access Policies References Introduction This writeup will explain the purpose for Access Policies from cAPIC release 25.0.4. If you recall, I had written an article previously on Cloud ACI 25.0.2 AWS Brownfield Integration to … More Cloud Network Controller (previously cAPIC) Access Policies

Installing Cisco Nexus Dashboard in AWS

September 7, 2022

Table of Contents: Introduction Pre-work on AWS for ND Install 2.a.Details of Pre-Work Install ND from Marketplace Some basic housekeeping stuff Configuring and joining the cluster References Introduction This writeup with show step by step how to install Nexus Dashboard on AWS. 📙⚠️ Previously I had written an article on Deploying MSO on Cisco Application … More Installing Cisco Nexus Dashboard in AWS

Simple Troubleshooting Steps for Cloud ACI/AWS To OnPrem ACI For End Point Reachability Issues

June 9, 2022

Table of Contents: Introduction 2 Items to check, Control Plane & Data Plane 2.a.Verifying Control Plane 2.b. Verifying Data Plane 2.c. Verify evpn on spine References Introduction In this writeup I will go though some very simple troubleshooting steps that you can follow if you are having issues between ACI/AWS fabric and onPrem Fabric Tenant … More Simple Troubleshooting Steps for Cloud ACI/AWS To OnPrem ACI For End Point Reachability Issues

AWS Direct Connect for connecting AWS/ACI Fabric to onPrem ACI Fabric

June 3, 2022

Table of Contents: Introduction Quick Introduction to AWS Direct Connect Azure and GCP equivanet for AWS Direct Connect and ACI support ACI/AWS Fabric Implementation with Direct Connect 4a. Implemenation 4b. Hosted VIF Method 4c. Second Method: associating VGW with DGW in Master Account NDO: Connecting onPrem/AWS ACI Fabric References Introduction Recently, I had the opportunity … More AWS Direct Connect for connecting AWS/ACI Fabric to onPrem ACI Fabric