Understanding ACI TCAM Utilization & Optimization

Being organized and creating consistent configurations is a great virtue in the Networking / SDN / Cloud and computing field.  ACI is no exception to that rule.  Haphazard, Inconsistent and thoughtless configurations will increase your work and complexity/understanding of your infrastructure once your  Fabric grows.  In addition it will make it more prone to failures … More Understanding ACI TCAM Utilization & Optimization

Upgrading ACI Fabric and MSO, Please Read This first.

This article is meant to point out items that you should pay attention to before upgrading your ACI Fabric and MSO Controllers.  The items listed here have been gained through first hand experience where I got pulled in to help customers upgrade and in some cases escalations, where customers had a “not such a smooth … More Upgrading ACI Fabric and MSO, Please Read This first.

Cisco cAPIC / Native Azure API Management for serverless Architecture integration

In this post, I will show how to Integrate Cisco Cloud ACI Fabric with Native Azure APIM. From cAPIC release 5.1.2 Native Azure Services are supported for cAPIC integration. Previous to this release EPGs were identified by label matching only (ip /region/custom label). For that reason, Native Azure Service support was not possible. This meant … More Cisco cAPIC / Native Azure API Management for serverless Architecture integration

Cisco cAPIC / Azure Kubernetes Service Integration with Azure File Share Services for Apps

In this post, I will cover a full Native Azure Kubernetes Service Integration Practical deployment with Azure Native File Share Services for Apps.   We will cover the following topics: Cisco cAPIC/Azure AKS integration (step by step) Creating File share to be used the K8s apps (we’ll spin up a simple nginx deployment with 2 replicas … More Cisco cAPIC / Azure Kubernetes Service Integration with Azure File Share Services for Apps

How to apply a cert to the ASE version of MSO?

I was recently asked this question by a customer and I’m documenting how to do this for the benefit of everyone.  Before proceeding let’s gather all the items that we will need to make this happen. Update 10/23/2020:   For MSO (on SE) certs the last action is to activate the key-ring.   Unfortunately, that part will … More How to apply a cert to the ASE version of MSO?

Getting Started: Cisco MSO With Ansible (updated: 1/13/2021)

Added on 12/03/2020:  A temporary workaround if you are using One Time Password / RSA device with Ansible/MSO.   Please see bottom of post. Added on 11/24/2020: Interesting discussion on One Time Password with Ansible that customer pointed out.  Please see bottom of post update for L3Out was added on 10/8/2020:  Please see the bottom of … More Getting Started: Cisco MSO With Ansible (updated: 1/13/2021)

ACI/Cloud Extension Usage Primer (Azure) – Multi-Node Service Graph with North South Firewall Scaling using vNET peering and hosting service devices in HUB vNET (overlay-2)

In a previous article for Multinode Service Graphs with Horizontal Scaling of Firewalls for East/West traffic on Azure I had described and guided you step by step on how to configure and test that scenario. I have had quite a few folks reach out to me and request that I do a similar writeup for … More ACI/Cloud Extension Usage Primer (Azure) – Multi-Node Service Graph with North South Firewall Scaling using vNET peering and hosting service devices in HUB vNET (overlay-2)