I am designing a CSS11506 solution in one-armed mode for an allready existing network (I am balancing webservers).
In my topology I have to use Client Nat in order for things to work.
However I've been told that the servers need to see the clients real IP address.
Does anyone know how can I solve this issue? Does direcly
I thought changing to inline mode, however that would not solve it because the default gateway of the server is the firewall; and even if I allow traffic on the firewall, the PC firewall of the client side will refuse the connection.
Topology & Design:
Two ACI fabrics
Stretching VLANs using OTV
Both fabrics are advertising BD subnets into same routing domain
Some BDs(or say VLANs) are stretched, but some are not.
Endpoints can move betwee...
VMware Trunk Port Group is supported from ACI version 2.1
VMM integration must be configured properly
ASA device package must be uploaded to APIC
ASAv version must be compatible with ACI and device package version
Topology &Design:Traffic flow within same fabric:Endpoint moves to Fabric-2Bounce Entry Times OutTraffic Black-holedSummarySolutionAppendix:
In the Previous articles of ACI Automation, we are using Postman/Newman a...