Aci vmware integration_youtube

•Download as PPTX, PDF•

0 likes•155 views

Dhruv Sharma

This slide provides exact steps we need to follow to achieve VMware integration with ACI Fabric

Education

ACI Integration with VMware
By Dhruv Sharma

Introduction
• There are two ways to connect an appliance/FTD to the leaf.
• Mode 1: Connect the FTD using an EPG (bare metal) over L2 configuration.
• Mode 2: Connect FTD using an EPF (Vmware ) over L2 configuration.
• Mode 2: Connect the FTD to the leaf using L3 mode. In this mode the FTD connects to the leaf
using a single VR.

Policies within ACI
Access Policy Tenant Based Policy

• Part 1: Configure Access Policy
Virtual Networking Fabric Policy

Setup Access Policy
• Step 1: Connect to vSphere client hosted on Cisco UCS Server confirm if you can see any VDS
(Virtual Distributed Switch). In our case there is not VDS. Domain = dcloud.DC

Setup Access Policy –Part A
(i) Create a new VLAN Pool

Setup Access Policy –Part A
(iii) Provide vCenter Credentials

Setup Access Policy –Part A
(iv) Add vCenter Address details

Setup Access Policy –Part A
(v) Configure Port channel settings for vCenter. Mostly we use Mac-pinning when connecting UCS
blade enclosures since LACP is not supported at the server level.

Setup Access Policy –Part B
Step 3: Configure Access Policy
(i) Configure Interface Policy Group:

Verification
• Step 4: Finally the Domain is created on the vsphere, which we created over the ACI fabric
automatically.

Verification
• Step 5: Verification- Verify the interfaces imported from vSphere for the virtual machines.

Tenant Policy
Step 2: Drag and drop the orange VMware icon onto the 20-Web EPG until you see a link
between them.

Tenant Policy
Step 3: Finally we need contracts - Note: Consumer is the source and Provider is the destination.

Questions
• Question: What does an interface status “Out Of Service” implies when we run the command
“show interface brief” from the leaf switches?
• Answer: Policy isn’t applied on the interface.

Questions
• Question: What are modes connecting from APIC controller ?
• Answer: We can connect to APIC controller using BASH (Linux) and NXOS mode shown below.

References
• https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/3-
x/virtualization/b_ACI_Virtualization_Guide_3_0_1/b_ACI_Virtualization_Guide_3_0_1_chapter_
011.html

Similar to Aci vmware integration_youtube

Tokyo meetup 20160224

Takao Setaka

Module 9: Increasing Security for Network Communication Internet Protocol security (IPsec) is a framework of open standards for protecting communications over IP networks through cryptographic security services. IPsec supports network-level peer authentication, data-origin authentication, data integrity, data confidentiality (encryption), and replay protection. The Microsoft IPsec implementation is based on standards that the Internet Engineering Task Force (IETF) IPsec working group developed. In this module, you will learn how to implement, configure, and troubleshoot IPsec. Lessons Overview of IPsec Configuring Connection Security Rules Configuring NAP with IPsec Enforcement Monitoring and Troubleshooting IPsec Lab : Increasing Security for Network Communication Selecting a Network Security Configuration Configuring IPsec to Authenticate Computers Testing IPsec Authentication After completing this module, students will be able to: Describe when and how to use IPsec. Configure Connection Security rules. Configure IPsec with NAP Enforcement. Describe how to monitor and troubleshoot IPsec.

6421 b Module-09

Bibekananada Jena

To meet business expectations without compromising on security, availability, or performance, today’s IT organizations are expected to deliver applications with a speed and efficiency that was unimaginable just a few years ago. To keep pace, you must transform your data center infrastructure to support the rapid provisioning and scaling of network and application services. With the joint solution of Cisco Application Centric Infrastructure (ACI) and F5 Synthesis™, you can operationalize the network and accelerate application deployment.

Cisco ACI & F5 Integrate to Transform the Data Center

F5NetworksAPJ

In this session, we walk through the fundamentals of Amazon VPC. First, we cover build-out and design fundamentals for VPC, including picking your IP space, subnetting, routing, security, NAT, and much more. We then transition into different approaches and use cases for optionally connecting your VPC to your physical data center with VPN or AWS Direct Connect. This midlevel architecture discussion is aimed at architects, network administrators, and technology decision-makers interested in understanding the building blocks that AWS makes available with VPC. Learn how you can connect your VPC with your offices and current data center footprint. This session adds a focus on AWS Partners and where they are relevant in AWS networking.

GPSTEC322-GPS Creating Your Virtual Data Center VPC Fundamentals Connectivity...

Amazon Web Services

VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...

VMworld

In this session, we will walk through the fundamentals of Amazon Virtual Private Cloud (VPC). First, we will cover build-out and design fundamentals for VPC, including picking your IP space, subnetting, routing, security, NAT, and much more. We will then transition into different approaches and use cases for optionally connecting your VPC to your physical data center with VPN or AWS Direct Connect. This mid-level architecture discussion is aimed at architects, network administrators, and technology decision-makers interested in understanding the building blocks AWS makes available with VPC and how you can connect this with your offices and current data center footprint.

Creating Your Virtual Data Center: VPC Fundamentals and Connectivity Options

Amazon Web Services

VMworld 2014: How I Learned to Stop Worrying and Love the Public Cloud

VMworld

Cisco ACI Main Session EMC World 2015

ldangelo0772

Module 5: Configuring and Troubleshooting Routing and Remote Access To support your organization’s distributed workforce, you must become familiar with technologies that enable remote users to connect to your organization’s network infrastructure. These technologies include virtual private networks (VPNs) and DirectAccess. It is important that you understand how to configure and secure your remote access clients by using network policies. This module explores these remote access technologies. Lessons Configuring Network Access Configuring VPN Access Overview of Network Policies Overview of the Connection Manager Administration Kit Troubleshooting Routing and Remote Access Configuring DirectAccess Lab : Configuring and Managing Network Access Configuring Routing and Remote Access as a VPN Remote Access Solution Configuring a Custom Network Policy Create and distribute a CMAK Profile Lab : Configuring and Managing DirectAccess Configure the AD DS Domain Controller and DNS Configure the PKI Environment Configure the DirectAccess Clients and Test Intranet Access Configure the DirectAccess Server Verify DirectAccess Functionality After completing this module, students will be able to: Configure network access. Create and configure a VPN solution. Describe the role of network policies. Use the Connection Manager Administration Kit to create and configure client connection profiles. Troubleshoot routing and remote access. Implement DirectAccess.

6421 b Module-05

Bibekananada Jena

Managing infrastructure with Application Policy by Mike Cohen

buildacloud

Openstack Summit: Networking and policies across Containers and VMs

Sanjeev Rampal

Click Here---> https://bit.ly/3DFASrH <---Get complete detail on SCS-C02 exam guide to crack Security Specialty. You can collect all information on SCS-C02 tutorial, practice test, books, study material, exam questions, and syllabus. Firm your knowledge on Security Specialty and get ready to crack SCS-C02 certification. Explore all information on SCS-C02 exam with number of questions, passing percentage and time duration to complete test.

AWS Security Specialty (SCS-C02) Exam | Study Tips & Tricks

AdinaCoyle

Download link - https://www.kovair.com/adapters/dynatrace-integration/ ‘Kovair Dynatrace Adapter’ allows one to integrate Dynatrace tool with best-of-breed ALM tools within Omnibus ecosystem. As a result of the integration, metrics monitored from Dynatrace tool can be traced and analyzed in Kovair or any analysis tool. This integration brings Kovair DevOps solution to capture application performance data as well as data related to network, containers, servers, hosts, cloud.

Dynatrace Integration Adapter - Datasheet

Kovair

Creating Your Virtual Data Center

Amazon Web Services

PCI DSS Compliance in the Cloud

ControlCase

Today’s enterprise networks are expected to operate according to three tenets; security, reliability, and performance. This is why implementing a comprehensive method of ensuring network compliance is important to every organization. Network compliance ensures that every network device and service is properly configured and adheres to a clearly defined standard. This builds confidence in the network’s ability to operate optimally and creates a foundation of trust for further network automation. Today’s modern network spans the both on-prem and multi-cloud environments, which poses a new challenge for network teams who must ensure compliance for all areas of the network. Traditional tools for delivering compliance only work with on-premises, CLI-based networks and lack any support for cloud network services that are managed though APIs. Network teams need a fresh solution for this challenge, so join Glenn Gray and Rich Martin for part 3 of Itential’s Modern Network Compliance series where they will discuss how to achieve network compliance in a hybrid and multi-cloud network environment. In this webinar, we will dive into: • Understanding the complexity of cloud networks. • Uncovering the methods of delivering compliance to cloud networks. • Achieving on-prem and cloud network compliance with a demo of Itential’s Configuration Manager.

Modern Network Compliance: Achieving Compliance in a Hybrid, Multi-Cloud World

Itential

The Liberty Buildpack aims to remove the hassle of running Java applications on Cloud Foundry whether it is the simplified setup, auto-configuration of Liberty and Java EE references to cloud resources, reduced droplet size through selective provisioning of the runtime, or the zero-touch configuration and usage of services. There are times, however, when an application needs a feature that the buildpack does not yet provide. This talk will start by showing how to use and configure the Java buildpack and finish by showing how to extend the buildpack to ensure that IBM BlueMix Cloud Foundry is the best place to run your application. To build services and integrate them with BlueMix, you must implement the Service Broker API of Cloud Foundry for your services. This talk will explain how to write plugins to the Liberty Buildpack that will auto wire services your organization developed and integrated into CF making it easier for your apps to use the services in Cloud Foundry.

Liberty Buildpack: Designed for Extension - Integrating your services in Blue...

Rohit Kelapure

vBrownbag EMEA VCAP6-DCV Design Objcetive 2.7 on Security in Logical Designs

Larus Hjartarson

CCNAv5 - S4: Chapter 4 Frame Relay

Vuz Dở Hơi

Cn instructor ppt_chapter4_final

Leoo Romo

Similar to Aci vmware integration_youtube (20)

Tokyo meetup 20160224

6421 b Module-09

Cisco ACI & F5 Integrate to Transform the Data Center

GPSTEC322-GPS Creating Your Virtual Data Center VPC Fundamentals Connectivity...

VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...

Creating Your Virtual Data Center: VPC Fundamentals and Connectivity Options

VMworld 2014: How I Learned to Stop Worrying and Love the Public Cloud

Cisco ACI Main Session EMC World 2015

6421 b Module-05

Managing infrastructure with Application Policy by Mike Cohen

Openstack Summit: Networking and policies across Containers and VMs

AWS Security Specialty (SCS-C02) Exam | Study Tips & Tricks

Dynatrace Integration Adapter - Datasheet

Creating Your Virtual Data Center

PCI DSS Compliance in the Cloud

Modern Network Compliance: Achieving Compliance in a Hybrid, Multi-Cloud World

Liberty Buildpack: Designed for Extension - Integrating your services in Blue...

vBrownbag EMEA VCAP6-DCV Design Objcetive 2.7 on Security in Logical Designs

CCNAv5 - S4: Chapter 4 Frame Relay

Cn instructor ppt_chapter4_final

Recently uploaded

On National Teacher Day, meet the 2024-25 Kenan Fellows

Mebane Rash

HMCS Vancouver Pre-Deployment Brief - May 2024 (Web Version).pptx

marlenawright1

TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...

Nguyen Thanh Tu Collection

Key note speaker Neum_Admir Softic_ENG.pdf

Admir Softic

80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...

Nguyen Thanh Tu Collection

Fostering Friendships - Enhancing Social Bonds in the Classroom

Pooky Knightsmith

SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx

Amanpreet Kaur

Holdier Curriculum Vitae (April 2024).pdf

agholdier

ICT role in 21st century education and it's challenges.

MaryamAhmad92

Mehran University Newsletter Vol-X, Issue-I, 2024

Mehran University of Engineering & Technology, Jamshoro

Basic Civil Engineering notes first year Notes Building notes Selection of site for Building Layout of a Building What is Burjis, Mutam Building Bye laws Basic Concept of sunlight ventilation in building National Building Code of India Set back or building line Types of Buildings Floor Space Index (F.S.I) Institutional Vs Educational Building Components & function Sills, Lintels, Cantilever Doors, Windows and Ventilators Types of Foundation AND THEIR USES Plinth Area Shallow and Deep Foundation Super Built-up & carpet area Floor Area Ratio (F.A.R) RCC Reinforced Cement Concrete RCC VS PCC

Basic Civil Engineering first year Notes- Chapter 4 Building.pptx

Denish Jangid

This PowerPoint helps students to consider the concept of infinity.

christianmathematics

Towards a code of practice for AI in AT.pptx

Jisc

ICT Role in 21st Century Education & its Challenges.pptx

AreebaZafar22

General Principles of Intellectual Property: Concepts of Intellectual Proper...

Poonam Aher Patil

Single or Multiple melodic lines structure

dhanjurrannsibayan2

Accessible Digital Futures project (20/03/2024)

Jisc

Micro-Scholarship, What it is, How can it help me.pdf

Poh-Sun Goh

Wizards are very useful for creating a good user experience. In all businesses, interactive sessions are most beneficial. To improve the user experience, wizards in Odoo provide an interactive session. For creating wizards, we can use transient models or abstract models. This gives features of a model class except the data storing. Transient and abstract models have permanent database persistence. For them, database tables are made, and the records in such tables are kept until they are specifically erased.

How to Create and Manage Wizard in Odoo 17

Celine George

Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...

Pooja Bhuva

Recently uploaded (20)

On National Teacher Day, meet the 2024-25 Kenan Fellows

HMCS Vancouver Pre-Deployment Brief - May 2024 (Web Version).pptx

TỔNG ÔN TẬP THI VÀO LỚP 10 MÔN TIẾNG ANH NĂM HỌC 2023 - 2024 CÓ ĐÁP ÁN (NGỮ Â...

Key note speaker Neum_Admir Softic_ENG.pdf

80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...

Fostering Friendships - Enhancing Social Bonds in the Classroom

SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx

Holdier Curriculum Vitae (April 2024).pdf

ICT role in 21st century education and it's challenges.

Mehran University Newsletter Vol-X, Issue-I, 2024

Basic Civil Engineering first year Notes- Chapter 4 Building.pptx

This PowerPoint helps students to consider the concept of infinity.

Towards a code of practice for AI in AT.pptx

ICT Role in 21st Century Education & its Challenges.pptx

General Principles of Intellectual Property: Concepts of Intellectual Proper...

Single or Multiple melodic lines structure

Accessible Digital Futures project (20/03/2024)

Micro-Scholarship, What it is, How can it help me.pdf

How to Create and Manage Wizard in Odoo 17

Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...

Aci vmware integration_youtube

1. ACI Integration with VMware By Dhruv Sharma

2. Introduction • There are two ways to connect an appliance/FTD to the leaf. • Mode 1: Connect the FTD using an EPG (bare metal) over L2 configuration. • Mode 2: Connect FTD using an EPF (Vmware ) over L2 configuration. • Mode 2: Connect the FTD to the leaf using L3 mode. In this mode the FTD connects to the leaf using a single VR.

3. Network Topology

4. Policies within ACI Access Policy Tenant Based Policy

5. • Part 1: Configure Access Policy Virtual Networking Fabric Policy

6. Setup Access Policy • Step 1: Connect to vSphere client hosted on Cisco UCS Server confirm if you can see any VDS (Virtual Distributed Switch). In our case there is not VDS. Domain = dcloud.DC

7. Setup Access Policy –Part A • Step 2: Connect to APIC and follow below steps to create vCEntre Domain Profile:

8. Setup Access Policy –Part A (i) Create a new VLAN Pool

9. Setup Access Policy –Part A (ii) Create a new AEP Policy and map it to the profile:

10. Setup Access Policy –Part A (iii) Provide vCenter Credentials

11. Setup Access Policy –Part A (iv) Add vCenter Address details

12. Setup Access Policy –Part A (v) Configure Port channel settings for vCenter. Mostly we use Mac-pinning when connecting UCS blade enclosures since LACP is not supported at the server level.

13. Summary

14. Setup Access Policy –Part B Step 3: Configure Access Policy (i) Configure Interface Policy Group:

15. Setup Access Policy –Part B (ii) Create a new Interface Profile

16. Setup Access Policy –Part B (iii) Create Interface Selector Profile

17. Verification • Step 4: Finally the Domain is created on the vsphere, which we created over the ACI fabric automatically.

18. Verification • Step 5: Verification- Verify the interfaces imported from vSphere for the virtual machines.

19. • Part 2: Tenant Based Policy

20. Tenant Policy • Step 1: Create an Application Profile & map Application EPGs

21. Tenant Policy Step 2: Drag and drop the orange VMware icon onto the 20-Web EPG until you see a link between them.

22. Tenant Policy Step 3: Finally we need contracts - Note: Consumer is the source and Provider is the destination.

23. Tenant Policy

24. Questions • Question: What does an interface status “Out Of Service” implies when we run the command “show interface brief” from the leaf switches? • Answer: Policy isn’t applied on the interface.

25. Questions • Question: What are modes connecting from APIC controller ? • Answer: We can connect to APIC controller using BASH (Linux) and NXOS mode shown below.

26. References • https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/3- x/virtualization/b_ACI_Virtualization_Guide_3_0_1/b_ACI_Virtualization_Guide_3_0_1_chapter_ 011.html

Aci vmware integration_youtube

Recommended

Recommended

More Related Content

Similar to Aci vmware integration_youtube

Similar to Aci vmware integration_youtube (20)

More from Dhruv Sharma

More from Dhruv Sharma (18)

Recently uploaded

Recently uploaded (20)

Aci vmware integration_youtube