At some point, you will need to configure Layer-3 routing from your ACI Fabric to External world. In this article, we will explore using EIGRP as the routing protocol to connect to our ACI Fabric. Assumptions Routed Interfaces will be used from External Devices to ACI Border LEAFs VRF is operating in Enforced Mode (meaning, … More L3OUT – EIGRP using Routed Interfaces
ACI fundamentally handles endpoint learning in a different manner than traditional network devices. This difference gives ACI the unique advantage of being able to limit flooding of ARP, Unknown Unicast, and other traffic types. As ACI has evolved, the best way to configure ACI, in an optimal way, has evolved as well. Below is a … More ACI Endpoint Learning Best Practices
The vast majority of ACI customers do not start out with an Application Centric deployment of ACI; mainly because they do not have a clear understanding of their applications and the vast amount of interdependencies. However, with the advent of Tetration and other 3rd party analytics tools, the knowledge about how your applications are connected … More Network Centric to ACI Centric Migration
A common use-case for ACI deployments is to attach a pair of firewalls northbound of ACI to filter traffic in and out of the fabric. For this use case, we will be using “UNMANAGED” mode to connect the FW pair, by attaching the firewall via an L3out (External Routed Connection), and pointing static routes (0.0.0.0/0) … More L3out – Connecting to Active/Standby FW
As with most things with ACI, we have a tremendous amount of flexibility in the configuration options to meet different requirements. In this post, we’ll explore options that allow multiple Tenants to use a common, shared L3Out (routing table) for the entire fabric (as opposed to using a L3OUT per VRF). Assumptions: Only non-overlapping IP … More ACI: Configuring a shared external Layer-3 connection for all Tenants