top of page
Search

ACI MicroSegmentation

  • Writer: Mukesh Chanderia
    Mukesh Chanderia
  • Jul 20, 2024
  • 1 min read

Application Profile --> EPG --> Intra EGP Isolation --> It's Unenforced (default) --> Change it to enforced and EndPoint within EGP will stop communication.



Now you may want to apply EndPoint Isolation on particular EGP then need to use Specific Domain


Go to Access Policies --> Domain


And allow Micro Segmentation



Now create uSeg EGP under application profile





Create uSeg Attributes


We need to define the rule for our USeg, in this particular case we are going to be using name as the VM attribute.








Recent Posts

See All
PBR Concepts

What is a Health Group? A Health Group  is a configuration object used to group specific PBR destination interfaces—typically the consumer and provider interfaces of the same service node (such as a f

 
 
 
Active/Standby F5 Across Different ACI Pods

Normal L3Out vs Floating L3Out Explained Understanding Cisco ACI Multi-Pod Architecture In a Cisco ACI Multi-Pod design: Each Pod has an independent IS-IS control plane Endpoint learning is maintained

 
 
 
Multi-site Traffic Flow

This article explains how traffic flows between Endpoint Groups (EPGs) across multiple sites in Cisco ACI using Nexus Dashboard Orchestrator (NDO). We will walk through three common design scenarios a

 
 
 

Comments

Follow me

© 2021 by Mukesh Chanderia
 

Call

T: 8505812333  

Contact

info@mukeshchanderia.com

  • Twitter
  • LinkedIn
  • Facebook Clean
©Mukesh Chanderia
bottom of page