Contributors: Soumitra Mukherji and Alec ChamberlainWith Expert Guidance from: Filip Wardzichowski If you followed Part 1 through 3, you should have a OpenStack / ACI integrated fabric ready to use. part 1: General discussion of Openstack and ACI integration part 2: showed how to do the integration using packstack part 3: showed how to do … More Openstack with ACI Integration – Part 4 (using Openstack Integrated ACI)
Contributors: Soumitra Mukherji and Alec ChamberlainWith Expert Guidance from: Filip Wardzichowski In Part 1 of this article, we discussed that I would write 4 parts for this. Part 1: General Discussion of Openstack / ACI Integration Part 2: Guided Install for Openstack/ACI with Opensource CentOS7 or with RedHat Registered CentOS7 using packstack (works but unsupported, … More Openstack with ACI Integration – Part 2 ( installing with packstack)
Recently I had the pleasure to work with the fine folks at the Cisco Proof of Concept labs in Research Triangle Park, NC. Because of the unique times we live in, this normally onsite event was constrained to a virtual event, where we set on WebEx meetings throughout the week and ran through various test … More CPOC Series: Exploring ACI
In this video we explore using Policy Based Redirects to identify either a subset or ALL traffic between EPGs and forcing that traffic to an external device, in our case, an ASA FW. In our case, our ACI Fabric is the L3GW for all traffic. With the PBR feature, we are going to use an … More CPOC Series: ACI Service Chaining using Policy Based Redirect (PBR) for east-to-west traffic through an ASA FW
In this video we do some testing to see what happens if and when we lose all APICs in a cluster. Does dataplane traffic stop? When do we lose the ability to make configuration changes? What happens when traffic comes back online? Click on the video and let’s answer these questions!
In this video we explore the design practices of attaching multiple EPGs to a BD. There are several use-cases for this, including but not limited to: Application-centric design Not having to re-address servers that you want to split up (i.e., separating web servers from app servers from db servers in the same subnet) Compliance (i.e., … More CPOC Series: Achieving Segmentation in ACI by Attaching multiple EPGs to one Bridge Domain
In this video we explore a very popular topic in Microsegmentation. To summarize, Microsegmentation inside of ACI is taking devices inside of an EPG, and placing them inside of their own “sub-EPG”. This new EPG behaves exactly like normal EPGs from a connectivity perspective; we still need contracts to talk to other EPGs (including our … More CPOC Series: ACI Segmentation Using Microsegmented EPGs (uSeg)
In this video, we take a look at Isolated EPGs. By default, endpoints within the same endpoint group are free to communicate with each. However, there are use-cases where you might want to group a common set of devices, allow them to communicate to an restricted set of services, but not allow them to communicate … More CPOC Series: Segmentation in ACI using Isolated EPGs
What do you think of when you hear active/active as a requirement for datacenter connectivity? If its not the first thing on your mind, it’s in the top-5, and I’m talking about the need to influence ingress routing (i.e., keeping traffic local to where you endpoints reside). Whenever we have an active/active routing design, routes … More CPOC Series: Using the Host-based routing feature in ACI to optimize ingress routing for MultiPod
Healthscores in ACI are a powerfully simple way to help us troubleshoot connectivity issues inside of the ACI Fabric. In this video, we’ll take down interfaces that are connected to our fabric, and use the Healthscore inside of our Tenant to troubleshoot the issue.