EMAIL SUPPORT

dclessons@dclessons.com

LOCATION

AF

vzANY use with Contracts

vzANY use with Contracts

vzANY use with Contracts

In the Cisco ACI fabric, EPGs can only communicate with other EPGs according to contract rules. A relationship between an EPG and a contract specifies whether the EPG provides the communications that are defined by the contract rules, consumes them, or both. By dynamically applying contract rules to all EPGs in a VRF, vzAny automates the process of configuring EPG contract relationships. Whenever a new EPG is added to a VRF, vzAny contract rules automatically apply. The vzAny one-to-all EPG relationship is the most efficient way of applying contract rules to all EPGs in a VRF.

In the zoning-rule, vzAny is represented with pcTag 0, which matches with any pcTags in the same scope (VRF). As a result, vzAny can not only simplify the configuration but also save a lot of space in the policy TCAM on leaf switches by consolidating multiple rules between individual pcTags into one. In the example above, let’s say pcTag of EPG 1 – 4 are pcTag 16401 – 16404. Then, the zoning rules without vzAny look like this:

The vzAny can be configured in the same way as normal EPGs. You need to consume or provide a contract from “EPG Collection for VRF” under the VRF.

vzAny Use Cases

In the first vzAny use case, vzAny is the consumer and EPG-1 is the provider. The EPG-1 provides its resources to all EPGs within a VRF, with access privileges defined by the contract. In the second use case, the roles are reversed, and the EPG-2 is granted access to specific services in all EPGs.

Comment

    You are will be the first.

LEAVE A COMMENT

Please login here to comment.

TABLE OF CONTENTS

RECENT POSTS

Membership Plan

Monthly

$100/Monthly
Half Yearly

$200/6 Months
Half Yearly

$350/Year