ACE Config to NAT to Two Different Addresses Depending on Source IP
I'm trying to setup an ACE 5.2(1) configuration so that clients from Subnets A-M get NATed to one address, and clients from subnets N-Z get NATed to another address. (This way the proxies in the serverfarm which are being balanced can request authentication for the correct subnets). All clients point to the same VIP address (required).I've set up two separate loadbalance policies to do this. However, only the first policy listed in my multi-match LOAD_BAL policy actually works.
Please see attached configuration. I think I need to re-orgnize ordering or something......Thanks!
Topology & Design:
Two ACI fabrics
Stretching VLANs using OTV
Both fabrics are advertising BD subnets into same routing domain
Some BDs(or say VLANs) are stretched, but some are not.
Endpoints can move betwee...
VMware Trunk Port Group is supported from ACI version 2.1
VMM integration must be configured properly
ASA device package must be uploaded to APIC
ASAv version must be compatible with ACI and device package version
Topology &Design:Traffic flow within same fabric:Endpoint moves to Fabric-2Bounce Entry Times OutTraffic Black-holedSummarySolutionAppendix:
In the Previous articles of ACI Automation, we are using Postman/Newman a...