Cisco ACI – Management In-band

This post covers a non-best practice design for the Management Network in Cisco ACI (Application Centric Infrastructure). The implementation of Management In-band instead of the recommended Management Out-Of-Band (OOB). An OOB network increases the odds that you will be able to access the devices in the event that the fabric is experiencing production issues and is unavailable.

(more…)

EVPN/MPLS vs VPLS

The aim of this post is to show a brief comparison of some key points for EVPN/MPLS and VPLS. You can see the details in the table below.

(more…)

Dynamic Multipoint VPN (DMVPN) and IGP Routing Protocols

Dynamic Multipoint VPN (DMVPN) is a multipoint GRE-based tunnelling technology. DMVPN consists of one or more hub routers that are configured as Next-Hop Resolution Protocol (NHRP) Next-Hop Servers (NHS). NHS, or hubs, are used to create mappings between the public IP address used for the tunnel source (NBMA address), and the private IP address used inside of the tunnel (tunnel address).

(more…)

Datacenter Application Control Engine (ACE) – High Availability

Although Cisco Application Control Engine (ACE) modules are End of Live, it is still common to find them deployed in Datacenters. The intention of this post is to get a better understanding of a High Availability deployment for Routed Mode with some cases of study.

(more…)

N+1 HA Wireless LAN Controller

N+1 HA /HA-SKU Wireless Controller Redundancy

The N+1 HA feature builds upon the N+1 redundancy model by allowing a single WLC (Wireless LAN Controller) to be deployed as a backup for multiple primary WLCs. N+1 deployment requires additional AP licenses to be purchased for the backup WLCs which are unused during normal operation.

(more…)

Cisco Unified Wireless Network Solution – Guest Wireless

Background

Public WLAN has caused mobile workers to become accustomed to being able to access their corporate network from practically anywhere. This paradigm of public access has extended to the enterprise itself and brings a well-founded apprehension over how to secure internal company information and infrastructure assets.

Cisco proposes Unified Wireless Network Solution for Guest Access to provide users with Internet access in a secure manner.

(more…)

Cisco ASA Cluster – Spanned EtherChannel Mode

ASA clustering consists of multiple ASAs acting as a single unit, see Figure 1.

Spanned EtherChannel is the Cisco recommended implementation in which interfaces on multiple members of the cluster are grouped into a single EtherChannel; the EtherChannel performs load balancing between units.

(more…)