O'Reilly logo

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Cisco ACI Cookbook

Book Description

Over 90 recipes to maximize automated solutions and policy-drive application profiles using Cisco ACI

About This Book

  • Confidently provision your virtual and physical infrastructure for application deployment
  • Integrate Cisco ACI with hypervisors and other third party devices
  • Packed with powerful recipes to automate your IT operations

Who This Book Is For

If you are a network administrator, system administrator, or engineer and are aware of the basics of Cisco ACI but want to start using it to automate your tasks, then this book is for you

What You Will Learn

  • Master the Cisco ACI architecture
  • Discover the ACI fabric with easy-to-follow steps
  • Set up quality of service within ACI
  • Configure external networks with Cisco ACI
  • Integrate with VMware and track VMware virtual machines
  • Configure apply and verify access policies
  • Extend or migrate a VMware virtual-machine LAN inside the ACI fabric
  • Monitor ACI with third party tools and troubleshoot issues

In Detail

Cisco Application Centric Infrastructure (ACI) is a tough architecture that automates IT tasks and accelerates data-center application deployments.

This book focuses on practical recipes to help you quickly build, manage, and customize hybrid environment for your organization using Cisco ACI. You will begin by understanding the Cisco ACI architecture and its major components. You will then configure Cisco ACI policies and tenants. Next you will connect to hypervisors and other third-party devices. Moving on, you will configure routing to external networks and within ACI tenants and also learn to secure ACI through RBAC. Furthermore, you will understand how to set up quality of service and network programming with REST, XML, Python and so on. Finally you will learn to monitor and troubleshoot ACI in the event of any issues that arise.

By the end of the book, you will gain have mastered automating your IT tasks and accelerating the deployment of your applications.

Style and approach

A set of exciting recipes to automate your IT operations related to datacenters, the Cloud, and networking tasks

Downloading the example code for this book. You can download the example code files for all Packt books you have purchased from your account at http://www.PacktPub.com. If you purchased this book elsewhere, you can visit http://www.PacktPub.com/support and register to have the code file.

Table of Contents

  1. Preface
    1. What this book covers
    2. What you need for this book
    3. Who this book is for
    4. Sections
      1. Getting ready
      2. How to do it…
      3. How it works…
      4. There's more…
      5. See also
    5. Conventions
    6. Reader feedback
    7. Customer support
      1. Downloading the color images of this book
      2. Errata
      3. Piracy
      4. Questions
  2. Understanding Components and the ACI Fabric
    1. Introduction
    2. Understanding ACI and the APIC
    3. An overview of the ACI fabric
      1. ACI hardware
      2. Understanding third-party integration
    4. Converting Cisco from Nexus NX-OS mode to ACI mode
      1. Uploading the ACI image
        1. How to do it...
          1. Method 2 - Using SCP to copy the ACI image from another SCP server
          2. Method 3 - Using a USB drive to copy the ACI image
      2. Upgrading the image
        1. How to do it...
      3. Logging in
        1. How to do it...
      4. Reverting to NX-OS mode
    5. ACI fabric overlay
    6. An introduction to the GUI
      1. System menu
      2. Tenants menu
      3. Fabric menu
      4. VM Networking
      5. L4-L7 Services
      6. Admin
      7. Operations
  3. Configuring Policies and Tenants
    1. Introduction
    2. Creating fabric policies
      1. How to do it...
      2. How it works...
    3. Creating access policies
      1. How to do it...
      2. How it works...
      3. There's more...
    4. Creating tenants
      1. How to do it...
      2. How it works...
    5. Configuring bridge domains
      1. How to do it...
      2. How it works...
    6. Configuring contexts
      1. How to do it...
      2. How it works...
      3. There's more...
    7. Creating application network profiles
      1. How to do it...
    8. Creating endpoint groups
      1. How to do it...
      2. How it works...
    9. Using contracts between tenants
      1. How to do it...
      2. How it works...
    10. Creating filters
      1. How to do it...
    11. Creating contracts within tenants
      1. How to do it...
    12. Creating management contracts
      1. How to do it...
      2. How it works...
  4. Hypervisor Integration (and Other Third Parties)
    1. Introduction
    2. Installing device packages
      1. How to do it...
      2. How it works...
      3. There's more...
    3. Creating VMM domains and integrating VMWare
      1. How to do it...
      2. There's more...
    4. Associating vCenter domains with a tenant
      1. How to do it...
      2. How it works...
    5. Deploying the AVS
      1. How to do it...
      2. How it works...
      3. There's more...
    6. Discovering VMWare endpoints
      1. How to do it...
      2. How it works...
    7. Adding virtual machines to a tenant
      1. How to do it...
      2. How it works...
    8. Tracking ACI endpoints
      1. How to do it...
      2. How it works...
      3. There's more...
    9. Integrating with A10
      1. How to do it...
      2. How it works...
      3. There's more...
    10. Deploying the ASAv
      1. How to do it...
      2. How it works...
      3. There's more...
    11. Integrating with OpenStack
      1. How to do it...
      2. How it works...
      3. There's more...
    12. Integrating with F5
      1. Getting ready
      2. How to do it...
      3. There's more...
    13. Integrating with Citrix NetScaler
      1. Getting ready
      2. How to do it...
      3. There's more...
  5. Routing in ACI
    1. Introduction
    2. Creating a DHCP relay
      1. How to do it...
        1. Creating a DHCP relay using the Common tenant
        2. Creating a global DHCP relay
      2. How it works...
      3. There's more...
    3. Utilizing DNS
      1. How to do it...
      2. How it works...
      3. There's more...
    4. Routing with BGP
      1. How to do it...
    5. Configuring a layer-3 outside interface for tenant networks
      1. How to do it...
        1. Creating routed interfaces
        2. Configuring an external SVI
        3. Configuring routed sub-interfaces
    6. Associating a bridge domain with an external network
      1. How to do it...
    7. Using route reflectors
      1. How to do it...
      2. How it works...
    8. Routing with OSPF
      1. How to do it...
    9. Routing with EIGRP
      1. How to do it...
    10. Using IPv6 within ACI
      1. How to do it...
      2. How it works...
    11. Setting up multicast for ACI tenants
      1. How to do it...
      2. How it works...
    12. Configuring multicast on the bridge domain and interfaces
      1. How it works...
      2. How it works...
      3. There's more...
    13. ACI transit routing and route peering
      1. How to do it...
      2. How it works...
      3. There's more...
  6. ACI Security
    1. Introduction
      1. AAA and multiple tenant support
      2. Understanding ACI role-based access control (RBAC)
    2. Creating local users
      1. How to do it...
      2. How it works...
    3. Creating security domains
      1. How to do it...
    4. Limiting users to tenants
      1. How to do it...
    5. Connecting to a RADIUS server
      1. How to do it...
      2. How it works...
    6. Connecting to an LDAP server
      1. How to do it...
    7. Connecting to a TACACS+ server
      1. How to do it...
  7. Implementing Quality of Service in ACI
    1. Introduction
    2. Preserving existing CoS settings
      1. How to do it...
      2. How it works...
      3. There's more...
    3. Configuring user-defined classes
      1. How to do it...
      2. How it works...
      3. There's more...
    4. Creating a basic QoS configuration
      1. How to do it...
      2. How it works...
      3. There's more...
    5. Verifying QoS
      1. How to do it...
  8. Network Programmability with ACI
    1. Introduction
    2. Browsing the object store using the Object Store Browser
      1. How to do it...
    3. Programming the ACI through REST
      1. Getting ready
      2. How to do it...
    4. Authenticating through REST and XML
      1. How to do it...
      2. How it works...
    5. Creating a tenant using REST and XML
      1. How to do it...
      2. How it works...
    6. Deleting a tenant using REST and XML
      1. How to do it...
      2. How it works...
    7. Creating an APN and an EPG using REST and XML
      1. How to do it...
      2. How it works...
    8. Creating an application profile and EPG using REST
      1. How to do it...
      2. How it works...
    9. Authenticating through REST and JSON
      1. How to do it...
      2. How it works...
    10. Creating a tenant using REST and JSON
      1. How to do it...
      2. How it works...
    11. Using the Python SDK
      1. Getting ready
      2. How to do it...
    12. Logging into the APIC using Cobra
      1. How to do it...
    13. Creating a tenant using the SDK
      1. How to do it...
  9. Monitoring ACI
    1. Introduction
    2. Finding faults
      1. How to do it...
      2. There's more...
    3. Viewing events
      1. How to do it...
        1. Tenant events
        2. Fabric events
        3. AAA events
    4. Navigating the audit logs
      1. How to do it...
    5. Setting up Call Home
      1. How to do it...
      2. How it works...
      3. There's more...
    6. Configuring SNMP
      1. Getting ready
      2. How to do it...
      3. How it works...
      4. There's more...
    7. Configuring Syslog
      1. How to do it...
      2. How it works...
    8. Configuring NetFlow
      1. How to do it...
      2. There's more...
  10. Troubleshooting ACI
    1. Introduction
    2. Layer 2 troubleshooting
      1. How to do it...
    3. FEX troubleshooting
      1. How to do it...
      2. There's more...
    4. SSL troubleshooting
      1. How to do it...
      2. There's more...
    5. Switch diagnostics
      1. How to do it...
      2. How it works...
    6. APIC troubleshooting
      1. How to do it...
      2. There's more...
    7. Upgrading the ACI software
      1. Getting ready
      2. How to do it...
      3. There's more...
    8. VMM troubleshooting
      1. How to do it...
    9. Routing verifications
      1. How to do it...
    10. Troubleshooting external connectivity
      1. How to do it...
    11. Multicast troubleshooting
      1. How to do it...
    12. QoS troubleshooting
      1. How to do it...
      2. There's more...
  11. An End-to-End Example Using the NX-OS CLI
    1. Introduction
      1. Background
      2. Before you start...
    2. Setting up in-band and out-of-band access to the nodes
      1. How to do it...
      2. How it works...
    3. Creating the security domain
      1. How to do it...
    4. Creating the VLAN domain
      1. How to do it...
      2. How it works...
    5. Creating the VMWare domain
      1. How to do it...
      2. How it works...
    6. Creating the tenant
      1. How to do it...
      2. How it works...
    7. Creating the VRF
      1. How to do it...
      2. How it works...
    8. Creating the bridge domains
      1. How to do it...
      2. How it works...
    9. Creating the applications and EPGs
      1. How to do it...
      2. How it works...
    10. Creating the contract
      1. How to do it...
      2. How it works...
    11. Creating an L4-L7 device
      1. How to do it...
      2. How it works...
      3. There's more...
    12. Creating service templates
      1. How to do it...
      2. How it works...
    13. Setting up the client VMs
      1. How to do it...