Use of source group for server to server communication
I have a requirement to send traffic to another server on the private side using the VIP address. I understand source groups need to be defined for this requirement to NAT the source ip address of server. There is also a requirement to send traffic to the public side using the CSS as a router. The server has a default gateway of the CSS. Do I need to configure an acl to use a content rules and source group for connection to a VIP and another statement in the rule to also allow all other traffic to the public side.
Topology & Design:
Two ACI fabrics
Stretching VLANs using OTV
Both fabrics are advertising BD subnets into same routing domain
Some BDs(or say VLANs) are stretched, but some are not.
Endpoints can move betwee...
VMware Trunk Port Group is supported from ACI version 2.1
VMM integration must be configured properly
ASA device package must be uploaded to APIC
ASAv version must be compatible with ACI and device package version
Topology &Design:Traffic flow within same fabric:Endpoint moves to Fabric-2Bounce Entry Times OutTraffic Black-holedSummarySolutionAppendix:
In the Previous articles of ACI Automation, we are using Postman/Newman a...