Design Archives -

NDO onPrem to CNC communication via Private IP through AWS Direct Connect

July 27, 2023

Table of Contents: Introduction Simulated Hybrid Topology Relevant Route Leak configuation for onPrem Router Verifiation References Introduction In a previous post, AWS Direct Connect for connecting AWS/ACI Fabric to onPrem ACI Fabric , I show details on how to implement a hybrid fabric between onPrem and AWS cloud through AWS Direct Connect. In that post, … More NDO onPrem to CNC communication via Private IP through AWS Direct Connect

CNC Fabric Brownfield Import With Overlapping Subnets

March 7, 2023

Introduction Dealing with overlapping Subnets Verification References Introduction When importing a brownfield infrastructure from cloud (AWS/Azure/GCP), it is not a given that the brownfield infrastructure has a unique IP subnet compared to what you already have in your existing CNC Fabric Tenants (onCloud/onPrem). In this short writeup I will go through how to import a … More CNC Fabric Brownfield Import With Overlapping Subnets

Consuming AWS Native Services from applications running on onPrem ACI Fabric

January 26, 2023

Table of Contents: Introduction Native Service examples on AWS shown in this writeup Overall Example Topology & Explanation Route53 Private Hosted Zone setup for oncloud.com CoreDns Install and setup for onprem.com Route53 Resolver Inbound Endpoint Route53 Resolver Outbound Endpoint S3 VPC Interface Endpoint EC2 VPC Interface Endpoint SQS VPC Interface Endpoint References Introduction Customers using … More Consuming AWS Native Services from applications running on onPrem ACI Fabric

Shared VPC Subnets across AWS accounts with ACI/CNC Fabric

January 13, 2023

Table of Contents: Introduction High Level Architecture for sharing subnets across AWS accounts Testing For Reachability References Introduction Sometimes it may be desired to stretch subnets across AWS VPCs in different AWS accounts. This could be a requirement for some sort of application High Availability or it could be a requirement to segregate administrative responsibilities … More Shared VPC Subnets across AWS accounts with ACI/CNC Fabric

NDO/CNC Fabric Integration with AWS GWLB for protected apps

October 10, 2022

Table of Contents: Introduction High Level Architecture for GWLB 2.a.Routing Table Discussion 2.b. Packet Flow from Internet to Protected APP 2.c. Packet Flow: East/West to Protected APP Integration of GWLB topology with NDO/CNC Fabric 3.a. Discussion on Importing App VPC into CNC 3.b. Packet Flow from outside VPC to Protected APP 3.c. Routing across TGW … More NDO/CNC Fabric Integration with AWS GWLB for protected apps

AWS Direct Connect for connecting AWS/ACI Fabric to onPrem ACI Fabric

June 3, 2022

Table of Contents: Introduction Quick Introduction to AWS Direct Connect Azure and GCP equivanet for AWS Direct Connect and ACI support ACI/AWS Fabric Implementation with Direct Connect 4a. Implemenation 4b. Hosted VIF Method 4c. Second Method: associating VGW with DXGW in Master Account NDO: Connecting onPrem/AWS ACI Fabric References Introduction Recently, I had the opportunity … More AWS Direct Connect for connecting AWS/ACI Fabric to onPrem ACI Fabric

ACI Fabric in Google Cloud

April 28, 2022

Table of Contents: Introduction Theory behind ACI / Cloud Integration 2a. Google ACI Fabric differences from AWS/Azure ACI Fabrics References Introduction It has been possible to integrate Cloud APIC in Google Cloud and create a ACI Fabric in Google Cloud since September of 2021. The latest image avaialable in Google Cloud Marketplace as of today … More ACI Fabric in Google Cloud

Connecting ACI/AWS Cloud Fabric to External DC/Branch Site via TGW

March 2, 2022

Table of Contents: Introduction Solution Requirements Basic Concept Implementation Steps overview Ensure that Contract Based Routing Is Turned on ⚠️ Proof of Concept a. Releases used in this POC b. Terraform: Initial Tenant & External Infrastructure + ec2 spinups c. spin up csr for physical infrastructure d. initial config of csr on physical infrastructure e. … More Connecting ACI/AWS Cloud Fabric to External DC/Branch Site via TGW

Nexus Dashboard 2.1 – New Features – Federated Clusters

September 20, 2021

Nexus Dashboard 2.1 has incorporated a lot of New Features/Improvements. In this write-up, I will primarily discuss the Federated Nexus Dashboard configuration, why use it and also discuss some of other underlying improvements/changes. I will also show how to send API calls to Nexus Dashboard Federated Clusters to get Federation Related Information. Installing ND is … More Nexus Dashboard 2.1 – New Features – Federated Clusters

Openstack with ACI Integration – Part 4 (using Openstack Integrated ACI)

September 17, 2021

Contributors: Soumitra Mukherji and Alec ChamberlainWith Expert Guidance from: Filip Wardzichowski If you followed Part 1 through 3, you should have a OpenStack / ACI integrated fabric ready to use. part 1: General discussion of Openstack and ACI integration part 2: showed how to do the integration using packstack part 3: showed how to do … More Openstack with ACI Integration – Part 4 (using Openstack Integrated ACI)