All Archives - Page 2 of 8 -

ACI NetCentric 2 AppCentric Using MicroSegmentation

February 22, 2020

In this blog post, I’ll discuss a method of moving from Network Centric ACI Deployment to APP Centric ACI deployment using combination of ACI Features: MicroSegmentation/PrefferedGroups/ContractMasters. When ACI Fabric is initially deployed, it is either deployed in a Greenfield or Brownfield method. Green Field means it’s a brand new deployment. Brown Field means that the … More ACI NetCentric 2 AppCentric Using MicroSegmentation

Understanding Scope Of Prefixes in L3 Out External EPG in ACI

November 8, 2019

In ACI the external Routing Peer to the router is done through border leaves with a object called L3Out. L3Out has an object in it called the L3Out InstP also known as the External EPG. In the External EPG you can put in Prefixes and choose the scope based on your intended goal. Under the … More Understanding Scope Of Prefixes in L3 Out External EPG in ACI

Cisco MSO Standalone Upgrade

October 30, 2019

Are you using MSO (ACI Multisite Orchestrator), in standalone mode ? Well, please do not do that in production. Often times in a lab environment you will be tempted to do this. I’m guilty of doing this myself on the Cisco ACI Advanced Bootcamp ACI training labs, simply because I’m too lazy to bring … More Cisco MSO Standalone Upgrade

dev to prod: A network programmability demo with ACI

September 30, 2019

One of the main benefits of ACI is the flexibility it offers. In particular, how easy it is to take configuration we have already completed, copy it, and re-use it for something else! For this demo, we’ll take configuration from Tenant dev, and copy the entire policy configuration to make a new Tenant called Tenant … More dev to prod: A network programmability demo with ACI

ACI / APIC Software Guidance

September 28, 2019

DISCLAIMER – This post is not meant to take the place of a software recommendation process. Customers should still perform their own due diligence before selecting a software version for their own ACI Fabric. This post is meant to summarize the available ACI Software features, by release, and be used as a quick reference guide. … More ACI / APIC Software Guidance

ACI – WebSocket Subscription for Push Notification

September 22, 2019

Introduction Cisco ACI provides the capability to subscribe via Web Socket. Once you subscribe to particular objects you can get push notifications for those objects. You can subscribe to many objects and each object will get a subscription ID. As an example if you subscribe to fvBD every time a BD is created/modified/deleted you will … More ACI – WebSocket Subscription for Push Notification

Configuring LDAP Authentication with Cisco APIC Controller

July 31, 2019

Local user databases are great, until you have a few dozen of them. Your lab environment probably has a few users (such as yourself), and some of you might even be sharing the “admin” account, at least until Kyle breaks the fabric again and doesn’t tell anyone and all you see is an audit trail … More Configuring LDAP Authentication with Cisco APIC Controller

An ldapsearch(1) Quick-Reference for ACI Admins

July 31, 2019

For network guys configuring LDAP Authentication on the Cisco APIC Controller, it can be useful to query an LDAP server when configuring or troubleshooting LDAP Authentication. This page shows how ldapsearch(1) can be used to query a directory for information. Basic Terms LDAP – Lightweight Directory Access Protocol. LDAP Schema – organization of information stored … More An ldapsearch(1) Quick-Reference for ACI Admins

LDAP Schemas: RFC2307 vs RFC2307bis

July 31, 2019

RFC2307 was written in 1998 to define a schema for representing NIS information (such as Unix account attributes such as UID, home directory, etc) in an LDAP-based directory. A later draft called RFC2307bis was introduced and adopted by some major Unix vendors, but never left draft stage. Microsoft’s Active Directory adopted RFC2307 attributes for Unix … More LDAP Schemas: RFC2307 vs RFC2307bis

Operationalizing ACI: Enhanced Endpoint Tracker

April 17, 2019

One of the most frequent topics that comes up when I am discussing ACI with customers, is, “How can we better operationalize ACI?”. In other words, how can we take what we have with ACI, and make it simpler to consume for not only ourselves, but for our Ops staff? For those new to ACI … More Operationalizing ACI: Enhanced Endpoint Tracker