This tutorial indeed is very good and helpful”. Thank you Robert!. “I really like the fact that the arguments are explained in detail so that are easier to understand.
I think you lose connectivity for those VMs using the port-groups deployed from APIC (there will be a fault on ACI related to this), but the port-groups cannot be deleted on VMware side because they are still attached to VMs. If you want to delete an EPG, first you need to deattach the port-group from them VMs and then delete de EPG from APIC.
This was a really helpful explanation of microsegmentation in ACI using the vDS! One question, at the 5 minute mark you mention that you need the EX switches for network-based attributes (IP/MAC), but that you can still microsegment based on VM attributes without the EX switches. In the virtualization guide (www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/1-x/virtualization/b_ACI_Virtualization_Guide_2_1_1/b_ACI_Virtualization_Guide_2_1_1_chapter_0100.html), Table 1 has a column titled VDS USeg (VM,IP,MAC) which seems to indicate the EX switches are required for VM attribute based microsegmentation in addition to IP/MAC. Can you help clarify that point?
Hi Robert, thanks for this video, it has been very useful. I got a question: Do I need to enable Micro-segmentation (adding pvlan and svlan) on VMM domain for intra-EPG isolation on base EPGs? Your demo uses the uEPG.
This tutorial indeed is very good and helpful”. Thank you Robert!. “I really like the fact that the arguments are explained in detail so that are easier to understand.
I think you lose connectivity for those VMs using the port-groups deployed from APIC (there will be a fault on ACI related to this), but the port-groups cannot be deleted on VMware side because they are still attached to VMs. If you want to delete an EPG, first you need to deattach the port-group from them VMs and then delete de EPG from APIC.
thank for video. have you tried endpoints on Physical Domains (bare metal) ?
This was a really helpful explanation of microsegmentation in ACI using the vDS! One question, at the 5 minute mark you mention that you need the EX switches for network-based attributes (IP/MAC), but that you can still microsegment based on VM attributes without the EX switches. In the virtualization guide (www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/1-x/virtualization/b_ACI_Virtualization_Guide_2_1_1/b_ACI_Virtualization_Guide_2_1_1_chapter_0100.html), Table 1 has a column titled VDS USeg (VM,IP,MAC) which seems to indicate the EX switches are required for VM attribute based microsegmentation in addition to IP/MAC. Can you help clarify that point?
Hi Robert, thanks for this video, it has been very useful. I got a question: Do I need to enable Micro-segmentation (adding pvlan and svlan) on VMM domain for intra-EPG isolation on base EPGs? Your demo uses the uEPG.
Excellent explanation! Thank you
The best explanation