Re: ACE in one-arm model. VIP on Client Side, servers in other v
route-map missing on vlan 900 SVI on MSFC.
Also ACL 101 doesnt feel right.
access-list 101 permit ip 10.12.3.0 0.0.0.255 10.0.9.64 0.0.0.63
This ACL will forward all server response traffic to ACE. Which is against the reason of using One-arm mode. You should have a specific ACL entry which only take the traffic from Servers liastening on specific ports to ACE and all the remaining traffic should be allowed to bypass ACE.
For example if the servers 10.12.3.150 & 140 are listening on port 80 then the ACL should only say
access-list 100 permit tcp host 10.12.3.150 eq www any
access-list 100 permit tcp host 10.12.3.140 eq www any
Why do you need native HA: The native HA feature allows two Cisco DCNM
appliances to run as active and standby applications, with their
embedded databases synchronized in real time. Therefore, when the active
DCNM is not functioning, the standby DCNM will...
This document will provide screenshots to outline the steps to setup
TACACS+ configuration to ACI and also the configuration required on
Cisco ACS server. Please find the official Cisco guide for configuring
TACACS+ Authentication to ACI:
Is it supported or NOT supported? It's a frequently asked question.
Before APIC, release 2.3(1f), transit routing was not supported within a
single L3Out profile. In APIC, release 2.3(1f) and later, you can
configure transit routing with a single L3Out pr...