Cisco UCS Director Tech Module Cisco Application Centric Infrastructure (ACI)

Similar documents
Configuring APIC Accounts

Cisco UCS Director Tech Module F5 BigIP

Cisco UCS Director Tech Module Cisco Adaptive Security Appliance (ASA & ASAv)

UCS Director: Tenant Onboarding Cisco ACI & Microsoft HyperV. Dec. 2016

Question No: 3 Which configuration is needed to extend the EPG out of the Cisco ACI fabric?

Integration of Hypervisors and L4-7 Services into an ACI Fabric. Azeem Suleman, Principal Engineer, Insieme Business Unit

Cisco ACI with Cisco AVS

Cisco UCS Director Tech Module Cisco UCS Manager (UCSM)

5 days lecture course and hands-on lab $3,295 USD 33 Digital Version

Virtualization Design

Cisco ACI Simulator Release Notes, Release 1.1(1j)

Layer 4 to Layer 7 Design

Cisco UCS Director Tech Module EMC XtremIO

Cisco UCS Director and ACI Advanced Deployment Lab

Cisco ACI and Cisco AVS

Cisco ACI Virtual Machine Networking

F5 BIG-IP Local Traffic Manager Service Insertion with Cisco Application Centric Infrastructure

Configuring Layer 4 to Layer 7 Resource Pools

Quick Start Guide (SDN)

ACI Terminology. This chapter contains the following sections: ACI Terminology, on page 1. Cisco ACI Term. (Approximation)

Design Guide for Cisco ACI with Avi Vantage

Cisco ACI Virtual Machine Networking

Cisco HyperFlex Systems

Quick Start Guide (SDN)

Use Case: Three-Tier Application with Transit Topology

Cisco UCS Director Tech Module EMC VNX and VNX2

Toggling Between Basic and Advanced GUI Modes

Verified Scalability Guide for Cisco APIC, Release 3.0(1k) and Cisco Nexus 9000 Series ACI-Mode Switches, Release 13.0(1k)

Integrating Cisco UCS with Cisco ACI

Tenant Onboarding. Tenant Onboarding Overview. Tenant Onboarding with Virtual Data Centers

Cisco ACI Terminology ACI Terminology 2

Verified Scalability Guide for Cisco APIC, Release 3.0(1k) and Cisco Nexus 9000 Series ACI-Mode Switches, Release 13.0(1k)

Policy Driven Data Centre with ACI

Cisco Application Centric Infrastructure (ACI) Simulator

Virtual Machine Manager Domains

Multi-Site Use Cases. Cisco ACI Multi-Site Service Integration. Supported Use Cases. East-West Intra-VRF/Non-Shared Service

Cisco ACI Virtual Machine Networking

Service Graph Design with Cisco Application Centric Infrastructure

Deploy Microsoft SQL Server 2014 on a Cisco Application Centric Infrastructure Policy Framework

Access Policies configured and interfaces up and in service EPG, Bridge Domain (BD) and Virtual Routing and Forwarding (VRF) already configured

Cisco ACI Virtual Machine Networking

Cisco ACI vcenter Plugin

Cisco ACI Virtual Machine Networking

Provisioning Overlay Networks

Cisco Application Centric Infrastructure and Microsoft SCVMM and Azure Pack

New and Changed Information

Networking Domains. Physical domain profiles (physdomp) are typically used for bare metal server attachment and management access.

Integration of Hypervisors and L4-7 Services into an ACI Fabric

Microsegmentation with Cisco ACI

Cisco APIC in a Cisco ACI Multi-Site Topology New and Changed Information 2

Exam Questions

Cisco ACI Simulator Release Notes, Release 2.2(3)

Application Centric Infrastructure

Exam Questions Demo Cisco. Exam Questions

Modeling an Application with Cisco ACI Multi-Site Policy Manager

Provisioning Core ACI Fabric Services

Using the NX-OS Style CLI

Manage Hybrid Clouds with a Cisco CloudCenter, Cisco Application Centric Infrastructure, and Cisco UCS Director Solution

believe in more SDN for Datacenter A Simple Approach

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Cisco ACI Multi-Site Fundamentals Guide

Application Provisioning

Page 2

Cisco ACI Simulator Release Notes, Release 3.0(2)

Automation of Application Centric Infrastructure (ACI) with Cisco UCS Director

Cisco ACI Multi-Pod/Multi-Site Deployment Options Max Ardica Principal Engineer BRKACI-2003

Integration of Hypervisors & L4-7 Services with ACI

Service Insertion with ACI using F5 iworkflow

Cisco ACI Virtualization Guide, Release 2.2(1)

Intra-EPG Isolation Enforcement and Cisco ACI

F5 iworkflow : Cisco APIC Administration. Version 2.0

Creating Application Containers

Cisco ACI Virtualization Guide, Release 1.1(1j)

Cisco ACI Virtualization Guide, Release 2.2(2)

Building NFV Solutions with OpenStack and Cisco ACI

Hybrid Cloud Solutions

Migration from Classic DC Network to Application Centric Infrastructure

Routing Implementation

Provisioning Overlay Networks

DELL EMC VSCALE FABRIC

Static VLAN Pools that will be used for the encapsulation VLAN between the external devices

Cisco ACI Virtualization Guide, Release 2.1(1)

Cisco Mini ACI Fabric and Virtual APICs

Design Guide to run VMware NSX for vsphere with Cisco ACI

Cisco IT Compute at Scale on Cisco ACI

Intra-EPG Isolation Enforcement and Cisco ACI

Real World ACI Deployment and Migration Kannan Ponnuswamy, Solutions Architect BRKACI-2601

ACI Fabric Endpoint Learning

Integrating the Cisco ASA with Cisco Nexus 9000 Series Switches and the Cisco Application Centric Infrastructure

Session objectives and takeaways

Principles of Application Centric Infrastructure

Intuit Application Centric ACI Deployment Case Study

Schema Management. Schema Management

Configure. Background. Register the FTD Appliance

Infoblox Network Insight Integration with Cisco ACI

ACI Multi-Site Architecture and Deployment. Max Ardica Principal Engineer - INSBU

F5 Demystifying Network Service Orchestration and Insertion in Application Centric and Programmable Network Architectures

Routing Design. Transit Routing. About Transit Routing

Forescout. Controller Plugin. Configuration Guide. Version 1.1

Cisco Application Policy Infrastructure Controller Data Center Policy Model

Transcription:

Cisco UCS Director Tech Module Cisco Application Centric Infrastructure (ACI) Version: 1.0 September 2016 1

Agenda Overview & Architecture Hardware & Software Compatibility Licensing Orchestration Capabilities Reports Example Use-Cases 2

Architecture & Overview 3

ACI Fabric Architecture ACI is a network fabric for datacenters Leaf/Spine topology Uses VXLAN and Tunnel Endpoints as an underlay All configuration is done from a controller (APIC) and pushed to the fabric nodes Control plane and data plane are separated APICs are deployed in a cluster for redundancy Leaf Nodes Spine Nodes APIC Controllers 4

UCS Director and APIC Integration Spine Nodes Leaf Nodes APIC Controllers HTTPS Port: 443 or HTTP Port: 80 UCS Director 5

Adding an APIC Account Navigate to Administration à Physical Accounts, choose the Multi-Domain Managers tab and click Add 6

Adding an APIC Account Set Account Type to APIC 7

Adding an APIC Account Enter the information about the APIC to add the account NOTE: Only enter the information for one APIC controller in the APIC controller cluster, the rest of the APIC controllers in the cluster will be automatically discovered and associated with this account 8

Hardware & Software Compatibility 9

IMPORTANT!! The following slide featuring support information may be out of date ALWAYS check the most up to date version of the UCS Director Compatibility Matrix The latest Compatibility Matrix and other supporting UCS Director documentation can be found at the following location: http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/ucs-director/doc-roadmap/b_ucsdirectordocroadmap.html 10

UCS Director Cisco ACI Support (As of UCS Director 6.0) Supported Cisco ACI Hardware Platforms Support all Cisco ACI hardware platforms running a supported version of ACI software Supported Cisco ACI Software Versions 1.0(2*) 1.0(3*) 1.0(4*) 1.1(1*) 1.1(2*) 1.1(3*) 1.1(4*) 1.2(1*) 1.2(2*) 1.3(1*) 1.3(2*) 2.0(1*) 11

UCS Director Cisco ACI Support (As of UCS Director 6.0) with VMware vsphere Supported VMware Distributed Virtual Switch (DVS) Versions Support all VMware Distributed Virtual Switch (DVS) versions relative to supported VMware vsphere software versions vsphere 5.0 (including Updates 1 and 2) vsphere 5.1 (including Update 1) vsphere 5.5 (including Updates 1b, 2d and 3b) vsphere 6.0 (including Updates 1 and 2) Supported Cisco Application Virtual Switch (AVS) Versions 4.2(1)SV2(2.3) 5.2(1)SV3(1.5) 5.2(1)SV3(1.6) 5.2(1)SV3(1.10a) 5.2(1)SV3(1.15) 12

UCS Director Cisco ACI Support (As of UCS Director 6.0) with Microsoft Hyper-V Supported Microsoft Hyper-V Versions Microsoft System Center Virtual Machine Manager (SCVMM) version 3.2.8xxx.x for Windows 2012 R2, Rollup 9 13

Licensing 14

Licensing Information UCS Director licensing is purchased solely in the form of physical server licenses However, included in each physical server license purchased is a storage device license and a network device license In addition to physical server tracking and licensing, UCS Director tracks the number of storage and network devices being managed against the number of licenses available If additional storage and/or network device licenses are required, they can be acquired by purchasing additional physical server licenses 15

Licensing Information Each ACI Leaf node in the ACI fabric requires a UCS Director network device license ACI Spine nodes do not require a UCS Director network device license NOTE!: network device licenses are included in and solely available by purchasing additional physical server licenses 16

Licensing Examples Network Device Physical Server Example 1 Qty. to be managed Total licenses available Example 2 Storage Device Example 3 X 6 /50 X 0 /8 X 10 /10 X 50 /50 X 0 /8 X 4 /10 X 8 /50 X 8 /8 X 2 /10 Total Physical Server Licenses Required: 50 Total Physical Server Licenses Required: 8 Storage Device License Included in Physical Server License Total Physical Server Licenses Required: 10 Network Device License Included in Physical Server License 17

Orchestration Capabilities 18

Orchestration Capabilities Tenants Create APIC Tenant Delete APIC Tenant Private Networks (VRFs) Create Private Network Delete Private Network Add Private Network Profile Bridge Domains Create Tenant Bridge Domain Modify Tenant Bridge Domain Delete Tenant Bridge Domain Add DHCP Label To Tenant Bridge Domain Delete DHCP Label From Tenant Bridge Domain Physical Domains Create Physical Domain Update Physical Domain Delete Physical Domain Attachable Access Entity Profiles Create Attachable Access Entity Profile Delete Attachable Access Entity Profile VMM Domains Create VMM Domain Update VMM Domain Delete VMM Domain Configure Hypervisor Function to Entity Profile Subnets Create Subnet To Bridge Domain Update Subnet To Bridge Domain Delete Subnet From Bridge Domain Create Subnet To EPG Delete Subnet to EPG Add Subnet To External Network Delete Subnet From External Network EPGs Create EPG Delete EPG Add Static Node To EPG Delete Static Node From EPG Add Static Path To EPG Delete Static Path From EPG Add Contract To EPG Delete Contract From EPG Add Domain To EPG Delete Domain From EPG Add Bridge Group Interface To EPG Delete Bridge Group Interface From EPG Delete ACE From ACL On EPG Add Interface To EPG Delete Interface From EPG Add ACL Entry To EPG Delete ACL From EPG Application Profiles Create Tenant Application Profile Delete Tenant Application Profile Contracts Create Consumed Contract Interface To EPG Modify Consumed Contract Interface To EPG Delete Consumed Contract Interface From EPG Add Filter To Contract Subject Delete Filter From Contract Subject Create Contract Subject Delete Contract Subject Modify Contract Subject Create Contract Get Contract Entities Get APIC Contracts Persist APIC Contract Result Delete APIC Contract Result Delete Contract Create Export Contract Delete Imported Contract Add Contract to External Network Delete Contract From External Network Add Label To Contract Subject Delete Label From Contract Subject Create Tenant Filter Create Tenant Filter Rule Delete Tenant Filter Rule Delete Tenant Filter Rename NetApp Cluster IPSpace Delete NetApp Cluster IPSpace 19

Orchestration Capabilities Cont. Fabric Access Policies and Profiles Associate Access Port Selector To Interface Profile Delete Access Port Selector From Interface Profile Configure Interface PC and VPC Associate Interface Selector Profile To Switch Profile Delete Interface Selector Profile From Switch Profile Associate Switch Selector To Switch Profile Delete Switch Selector From Switch Profile Create Interface Profile Delete Interface Profile Create Leaf Policy Group Delete Leaf Policy Group Create Switch Profile Delete Switch Profile Create PC Interface Policy Group Delete PC Interface Policy Group Create vpc Interface Policy Group Delete vpc Interface Policy Group Create Access Port Policy Group Delete Access Port Policy Group Protocol Policies Create Link Level Policy Delete Link Level Policy Delete CDP Interface Policy Create CDP Interface Policy Update CDP Interface Policy Delete LLDP Interface Policy Create LLDP Interface Policy External Bridged/L2 Networks Add External Bridged Network Delete External Bridged Network Add External Network To External Bridged Network Delete External Network From External Bridged Network Create Node Profile To External Bridged Network Delete Node Profile To External Bridged Network Create L2 Domain Delete L2 Domain VLAN Pools Create VLAN Pool Delete VLAN Pool Add VLAN Range To VLAN Pool Delete VLAN Range From VLAN Pool External Routed/L3 Networks (continued) Delete Static Route From Logical Node Create Logical Node Profile To External Routed Network Create BGP Peer Connectivity To Node Profile Delete BGP Peer Connectivity From Node Profile Add Interface To Interface Profile Add Interface To Logical Interface Profile Create Logical OSPF Interface Profile Delete Logical OSPF Interface Profile Create EIGRP Interface Profile Delete EIGRP Interface Profile Create L3 Domain Delete L3 Domain Create OSPF Interface Policy Create EIGRP Interface Policy Delete OSPF Interface Policy Delete EIGRP Interface Policy Create OSPF Timers Delete OSPF Timers Add Context To Routed Profile Delete Context From Routed Profile Add Interface Profile To Node Profile Add Logical Interface Profile To Logical Node Profile Delete Interface Profile from Node Profile Delete Logical Interface Profile from Logical Node Profile Delete Interface From Interface Profile Delete Interface From Logical Interface Profile Add Static Route To Interface On EPG Delete Static Route From Interface On EPG Create Action Rule Profile External Routed/L3 Networks Add External Routed Network Delete External Routed Network Add Routed Control Profile To External Routed Network Delete Routed Control Profile From External Routed Network Add Logical Node to Logical Node Profile of External Routed Network Delete Logical Node From Logical Node Profile of External Routed Network Delete Logical Node Profile From External Routed Network Add External Network To External Routed Network Delete External Network From External Routed Network Modify Action Rule Profile Add Static Route To Logical Node Delete Action Rule Profile 20

Orchestration Capabilities Cont. L4-L7 Services Add Load Balancer Parameters To Function Node Delete LB SSL Offload Parameters From EPG Delete Load Balancer Parameters From Function Node Add Load Balancer Parameters To EPG Add Load Balancer Service Parameters To EPG Remove Load Balancer Service Parameters From EPG Delete Load Balancer Parameters To EPG Add Filter To Service Graph Node Delete Filter From Service Graph Node Modify L4-L7 Service Graph Delete L4-L7 Service Graph Create Logical Device Context Delete Logical Device Context Create Logical Interface Context Delete Logical Interface Context Add Bridge Group Interface To Function Node Delete Bridge Group Interface From Function Node Create L4-L7 Service Graph Create L4 L7 Service Graph Template Add Function Node to L4-L7 Service Graph Configure Failover For ASA Add Load Balancer Route Parameters To EPG Add SSL Offload Parameters to EPG Add Function Config Parameters To EPG Delete Function Config Parameters From EPG Update Connection to Node Add Interface To Function Node Delete Interface From Function Node Add Network Object Parameters To Function Node Add Function Config Parameters To Function Node L4-L7 Services (continued) Delete Network Object Parameters From Function Node Delete Function Node from L4-L7 Service Graph Create Function Profile Group Delete Function Profile Group Add Interface To Function Profile Delete Interface From Function Profile Add ACL Entry To Function Profile Delete ACL Entry From Function Profile Add Bridge Group Interface To Function Profile Delete Bridge Group Interface From Function Profile Add Network Object Parameters To Function Profile Delete Network Object Parameters From Function Profile Create Function Profile Copy Function Profile Delete Function Profile Add Function Config Parameters To Function Profile Delete Function Config Parameters From Function Profile Delete Function Config Parameters From Function Node Add ACL Entry To Function Node Delete ACL Entry From Function Node Delete ACE From ACL on Function Node Create Device Cluster Create Device Cluster Concrete Device Add Interface To Concrete Device Add Interfaces To Device Cluster Delete Concrete Interface From Device Delete Device Cluster Concrete Device Delete Failover Configuration For ASA Delete Device Cluster Export Device Cluster L4-L7 Services (continued) Delete Imported Device Cluster Add NS Parameters To Device Cluster Configure Port Channel Members To L4 L7 Device Delete Port Channel Members From L4 L7 Device Configure NTP Parameters To L4 L7 Device Configure SNMP Parameters To L4 L7 Device Add Logical Interface to Device Cluster Delete Logical Interface from Device Cluster Create ND Interface Policy Delete ND Interface Policy Modify L4-L7 Parameter Value Associate Access List To Interface Disassociate Access List From Interface 21

Reports 22

Tabular Reports and Information At ACI Fabric Level Fabric Nodes System Fabric Memberships Physical Domains Tenants Health Nodes Health Access Entity Profile Link Level Policy VLAN Pool CDP Interface Policy LLDP Interface Policy Leaf Policy Groups L3 Domain L2 Domain VM Networking L4-L7 Service Device Types Fabric Nodes Topology L2 Neighbors Deployed Service Graph EPG to Contract Association Access Port Policy Profiles Fabric Interface Profiles Fabric Configured Switch Interfaces Fabric Switch Profiles Tenants 23

Tabular Reports and Information At ACI Tenant Level Application Profile Deployed Service Graph Filters External Bridge Network External Routed Network Bridge Domains Private Networks BGP Timers Contracts Taboo Contracts Relay Policy Option Policy End Point Retention OSPF Interface EIGRP Interface OSPF Timers IFMP Snoop Custom Qos Action Rule Profile L4-L7 Service Graph Function Profile Group Device Clusters Deployed Device Cluster Imported Device Cluster Logical Device Context 24

Example Use-Cases 25

Example Use-Cases Use-Case #1: Create New vpc-attached Physical Domain in ACI Fabric Use-Case #2: Create New 3 Tier Application Profile in ACI 26

Use Case #1: Create New vpc-attached Physical Domain in ACI Fabric The following use case example highlights how to automate the provisioning and configuration of a new Physical Domain connected by a vpc across two leaf nodes in the ACI Fabric Configuration includes the following related to the Physical Domain VLAN Pool Attachable Access Entity Profile VPC Interface Policy Group Interface Profile Switch Profile 27

Use Case #1: Create New vpc-attached Physical Domain in ACI Fabric Prerequisites that must be in place before running this use-case (workflow) ACI fabric (spine and leaf nodes) must be configured and discovered by APIC controllers New device (physical domain) must be physically cabled with a connection to the same interfaces on two leafs in the fabric For example, Eth 1/12 on both leaf 1 and leaf 2 28

Use Case #1: Create New vpc-attached Physical Domain in ACI Fabric Start Create VLAN Pool Create Physical Domain Create Attachable Access Entity Profile Associate Access Port Selector to Interface Profile Create Interface Profile Create vpc Interface Policy Group Update Physical Domain Create Switch Profile Associate Switch Selector to Switch Profile Associate Interface Selector Profile to Switch Profile Finish 29

Use Case #1: Create New vpc-attached Physical Domain in ACI Fabric Use Case #1 workflow can be downloaded from the UCS Director community site here: https://communities.cisco.com/docs/doc-69253 The UCS Director community site also includes other workflows, custom tasks and information 30

Use Case #2: Create New 3 Tier Application Profile in ACI The following use case example highlights how to automate the provisioning and configuration of a new Application Profile for an example 3 tier application Configuration includes the following related to the Application Profile Private Network Bridge Domains Subnets End Point Groups Contracts Adding VMM Domain to EPGs to Create Portgroups 31

Use Case #2: Create New 3 Tier Application Profile in ACI Prerequisites that must be in place before running this use-case (workflow) ACI fabric (spine and leaf nodes) must be configured and discovered by APIC controllers VMM Domain must be added to the ACI fabric One ore more ACI tenants must be created 32

Use Case #2: Create New 3 Tier Application Profile in ACI Start Create Private Network Create Tenant Application Profile Create Tenant Bridge Domain {Tier 1} Get IP Subnet from IP Subnet Pool Policy {Tier 1} Create Subnet to Bridge Domain {Tier 1} Create Subnet to Bridge Domain {Tier 3} Get IP Subnet from IP Subnet Pool Policy {Tier 3} Create Tenant Bridge Domain {Tier 3} Create Subnet to Bridge Domain {Tier 2} Get IP Subnet from IP Subnet Pool Policy {Tier 2} Create Tenant Bridge Domain {Tier 2} Create EPG {Tier 1} Create EPG {Tier 2} Create EPG {Tier 3} Add Contract to EPG {Consumed by Tier 1} Add Contract to EPG {Provided by Tier 2} Add Contract to EPG {Consumed by Tier 2} Finish Add Domain to EPG {Tier 3} Add Domain to EPG {Tier 2} Add Domain to EPG {Tier 1} Add Contract to EPG {Provided by Tier 1} 33

Use Case #2: Create New 3 Tier Application Profile in ACI Use Case #2 workflow can be downloaded from the UCS Director community site here: https://communities.cisco.com/docs/doc-69314 The UCS Director community site also includes other workflows, custom tasks and information 34

35

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback