Design Archives - Page 3 of 6 -

Understanding ACI TCAM Utilization & Optimization

January 6, 2021

Being organized and creating consistent configurations is a great virtue in the Networking / SDN / Cloud and computing field. ACI is no exception to that rule. Haphazard, Inconsistent and thoughtless configurations will increase your work and complexity/understanding of your infrastructure once your Fabric grows. In addition it will make it more prone to failures … More Understanding ACI TCAM Utilization & Optimization

CPOC Series: Exploring ACI

August 1, 2020

Recently I had the pleasure to work with the fine folks at the Cisco Proof of Concept labs in Research Triangle Park, NC. Because of the unique times we live in, this normally onsite event was constrained to a virtual event, where we set on WebEx meetings throughout the week and ran through various test … More CPOC Series: Exploring ACI

CPOC Series: ACI Service Chaining using Policy Based Redirect (PBR) for east-to-west traffic through an ASA FW

August 1, 2020

In this video we explore using Policy Based Redirects to identify either a subset or ALL traffic between EPGs and forcing that traffic to an external device, in our case, an ASA FW. In our case, our ACI Fabric is the L3GW for all traffic. With the PBR feature, we are going to use an … More CPOC Series: ACI Service Chaining using Policy Based Redirect (PBR) for east-to-west traffic through an ASA FW

CPOC Series: Achieving Segmentation in ACI by Attaching multiple EPGs to one Bridge Domain

August 1, 2020

In this video we explore the design practices of attaching multiple EPGs to a BD. There are several use-cases for this, including but not limited to: Application-centric design Not having to re-address servers that you want to split up (i.e., separating web servers from app servers from db servers in the same subnet) Compliance (i.e., … More CPOC Series: Achieving Segmentation in ACI by Attaching multiple EPGs to one Bridge Domain

CPOC Series: Using the Host-based routing feature in ACI to optimize ingress routing for MultiPod

August 1, 2020

What do you think of when you hear active/active as a requirement for datacenter connectivity? If its not the first thing on your mind, it’s in the top-5, and I’m talking about the need to influence ingress routing (i.e., keeping traffic local to where you endpoints reside). Whenever we have an active/active routing design, routes … More CPOC Series: Using the Host-based routing feature in ACI to optimize ingress routing for MultiPod

CPOC Series: Establishing L2 connectivity into ACI

August 1, 2020

In this video we explore the following: The configuration needed to establish a layer-2 connection between your traditional networking environment and the ACI Fabric Various ways to determine the location of our endpoints

ACI/Cloud Extension Usage Primer (Azure) – Multi-Node Service Graph with Horizontal Firewall Scaling using vNET peering and hosting service devices in HUB vNET (overlay-2)

July 28, 2020

In this writeup I will show you how to configure a Multi-Node Service Graph in Azure using Cloud ACI. We will insert multiple Service devices in-between the communication path of different workloads. In addition one of the great values of this that you will immediately notice is the horizontal scaling of Firewalls. Firewall Clustering is … More ACI/Cloud Extension Usage Primer (Azure) – Multi-Node Service Graph with Horizontal Firewall Scaling using vNET peering and hosting service devices in HUB vNET (overlay-2)

ACI/Cloud Extension Usage Primer (Azure) – Simple Service Graph with Azure Network Load Balancer & vNET Peering

July 24, 2020

This is a continuation of the previous article of Deploying Simple Service Graph with Azure ALB with vNET Peering. To get the full understanding of this, please first follow through the Azure vNET Peering article and the Simple Service Graph with Azure ALB with vNET Peering. In this exercise, we will take where we previously … More ACI/Cloud Extension Usage Primer (Azure) – Simple Service Graph with Azure Network Load Balancer & vNET Peering

ACI/Cloud Extension Usage Primer (Azure) – Simple Service Graph with Azure Application Gateway & vNET Peering

July 21, 2020

Release 5.0.2e of cAPIC, has extensive support for integrating load balancer / firewall services with your workloads in Azure Cloud. Once you understand the basic rules of deploying these services you will be able to integrate these services efficiently to suit your requirements. Below is a list of service integration features that are available in … More ACI/Cloud Extension Usage Primer (Azure) – Simple Service Graph with Azure Application Gateway & vNET Peering