SPACI - ACI for Service Providers

Code: 3913

5 days

List Tuition : $4,495.00 USD

Course Overview

    Download PDF 

In this course, you will examine ACI use cases for service provider environments, which include policy-driven configurations, design details, multi-tenant internal and external network integration and migration, routing protocol exploration, security implications, and disaster recovery solutions. You will perform various scenario-driven configurations and testing in lab exercises using hand-on labs. You will learn how to simplify complex routing deployments and reduce the time and cost required to provision customer networking needs while maintaining both ACI and non-ACI networks. Finally, you will learn to support site redundancy including disaster recovery solutions both at the customer site and public cloud provider levels while maintaining the integrity of customer data and hardening of sensitive information.

Service providers deploying Cisco ACI

  • Deploy multi-tenant configurations
  • Configure ACI for advanced OSPF
  • Configure ACI for BGP internal environments
  • Configure BGP for external reachability
  • Configure ACI for disaster recovery
  • Service graph insertion
  • Design service graphs
  • Deploy ACI securely

1. ACI Fundamentals

  • Review ACI concepts and principles
  • Policy and the ACI policy model in particular
  • Differentiate between the policy and the network
  • Define application logic through policy
  • Provider and consumer relationships
  • Understand how to automate infrastructure through policy
  • Review policy instantiation
  • Spine/leaf single-site topology
  • ACI management networks
  • Extended VXLAN
  • Unicast forwarding
  • Multicast forwarding
  • Distributed Layer 3 gateway
  • ACI as a gateway
  • Flowlet dynamic load-balancing

2. Endpoint Groups (EPG) Usage and Design

  • Current Network Definition of Applications
  • ACI Endpoint Groups
  • Mapping traditional network constructs to the ACI fabric
    • EPG as VLAN
    • EPG as a subnet (model classic networking using EPGs)
    • EPG as virtual extensible LAN (VXLAN)/Network Virtualization using Generic Routing Encapsulation (NVGRE) virtual network identifier (VNID)
    • EPG as a VMware port group
  • Utilizing the ACI fabric for stateless network abstraction
    • EPG as an application component group (web, app, database, etc.)
    • EPG as a development phase (development, test, production)
    • EPG as a zone (internal, DMZ, shared services, etc.)

3. ACI Layer 3 Connection to an Outside Network

  • Border Leaves
  • Route Distribution within the ACI Fabric
  • OSPF Routing Protocol Peering between ACI and the External Router
    • OSPF Area Type
    • Supported Interface Type
    • OSPF Protocol Parameters Tuning
    • OSPF High-Availability Design
    • Tag Tenant Routes Using OSPF Route Policy
    • Layer 3 Outside Connection with OSPF Example
  • EIGRP Routing Protocol Peering between ACI and the External Router
    • EIGRP Protocol Parameters Tuning
    • EIGRP High-Availability Design
    • Tag Tenant Routes Using EIGRP Route Policy
    • Layer 3 Outside Connection with EIGRP
    • Example
  • IBGP Routing Protocol Peering between the ACI and External Router
    • BGP AS Number
    • BGP Route Policy
    • BGP Peering Consideration
    • BGP Deployment Example
  • Forwarding and Policy Model with ACI Layer 3 Outside Connection
    • Inside and Outside
    • External EPG and Policy Model
  • ACI Layer 2 Connection to the Outside Network
    • Extend the EPG Out of the ACI Fabric
    • Extend the Bridge Domain Out of the ACI Fabric
    • ACI Interaction with Spanning Tree Protocol(STP)
  • Remote VXLAN Tunnel Endpoint (VTEP)

4. Border Gateway Protocol (BGP) for External Network Reachability

  • BGP Network Topology
  • Fabric Setup for External Network Peering
  • iBGP Peering Options with an External Network
  • WAN Router Sample Configuration
  • ACI BGP Sample Configuration for ISP1
  • Bridge Domain
  • External Routed Network
    • Create Layer 3 outside Network Profiles
    • Create Node Profiles
    • Configure a BGP Peer Connectivity Profile for ISP1
    • Create an External Endpoint Group
  • Route Profile
  • Create a Route Profile
  • Associate the Route Profile
  • The default-export Route Profile
  • ACI BGP Sample Configuration for ISP2
  • BGP Configuration and Statistic Validation

5. Disaster Recovery Design

  • Naming Conventions, IP Addresses, and VLANs
  • Design Requirements
    • Tenant DMZ
    • Tenant Server Farm
    • Traffic Flow
  • Disaster Recovery Topology and Service Flows
    • Leaf and Spine Connectivity
    • Server Connectivity with Leaf Switches
    • Layer 4 Through 7 Device C

Familiarity with Cisco UCS and ACI

Request a Discounted Quote

Other Courses You May Like

Bring Training to You

Request schedule for this course

Request a Quote for this Class

We provide government and government contractor discounts, please request a quote


total option: 0

Hotel and Travel can be included on your quote.
For immediate response, you can call 1-855-515-2170 or we will provide a quote within 4 business hours. Travel must be booked 14 days before training for rate to apply.

Learn How to Become a Managed Learning Member

Request a Quote

Thank you for requesting a quote, we will be in touch shortly with a quote. If you need immediate assistance, please call 855-515-2170.

Request Other Date

Request date or location you need

Don’t see the date or location you need? Contact us and let us know, we are adding dates and locations daily.