Posts in Category: ACI

Cisco ACI L4-L7 Service-Graph One-Arm mode PBR with Fortinet Firewall

I just launched my first youtube video where I configure and deploy a Cisco ACI Service graph with Policy Based Redirect. I'm using the VMM domain integration, and I'm redirecting the flows between two VMs (client and server) from two different EPGs into a Fortinet VM64 Firewall. Please comment the video if you have any question, but first, go put a like on the video ;) Read more [...]

What are the Endpoint Security Groups (ESGs) of ACI ?

You should have noticed the release 5.0(1) of Cisco ACI last week, it introduces a few new features among which we can find the Endpoint Security Groups (ESGs). Read more [...]

ACI | APIC unreachable after PCIe NIC card replacement

Following a hardware issue on a Cisco APIC, we had to replace the PCIe NIC card of the server (based on Cisco UCS). And as you may also encounter if you are reading this, it wasn't straight forward :) The initial problem was that the Eth2-1 and Eth2-2 ports went down after a few hours after each reboot, and that's a problem in an active APIC cluster... we decided to replace this APIC by the standby one in order to maintain a stable cluster of 3x APICs, before replacing the card. How to replace Read more [...]

ACI | Network unreachable from APIC

Some days ago I had to configure a radius server on an APIC cluster. This server was addressed in the range and it worked well for the spines and leaves of the fabric but not for any APIC of the cluster. From the APIC, we had the "unreachable" faults: From the CLI, the problem seemed more clear: APIC1# bashadmin@APIC1:~> ping ( 56(84) bytes of data.From icmp_seq=1 Destination Host UnreachableFrom icmp_seq=2 Destination Read more [...]