its not totaly clear what you are trying to achieve. Do you want to have access-restrions on a per user basis for URLs or for WEB-access at all? Regarding the Monitoring a Cache-Log is kind a worthy BUT there are reglemenations in some countries regarding what is allowed to be logged. A cache-log can tell you e.g. which IP-Adress browses to which URL.
You can do this today with ACNS 5.0.3 on the Cisco Content Engine. Smartfilter, Websense or even N2H2 are supported filtering and monitoring applications that will generate logs that you can review later-on. These applications running on the Content Engine will meet your needs of monitoring web access, as well as blocking sites that are deemed against your corporate usage policy.
Topology & Design:
Two ACI fabrics
Stretching VLANs using OTV
Both fabrics are advertising BD subnets into same routing domain
Some BDs(or say VLANs) are stretched, but some are not.
Endpoints can move betwee...
VMware Trunk Port Group is supported from ACI version 2.1
VMM integration must be configured properly
ASA device package must be uploaded to APIC
ASAv version must be compatible with ACI and device package version
Topology &Design:Traffic flow within same fabric:Endpoint moves to Fabric-2Bounce Entry Times OutTraffic Black-holedSummarySolutionAppendix:
In the Previous articles of ACI Automation, we are using Postman/Newman a...