ADC SG-1 Manual do Utilizador descarregar pdf (Página 16)

Reference Architecture | Dynamic L4-L7 Service Insertion with Cisco ACI and A10 Thunder ADC

Adding L4-L7 Devices to the APIC

The L4-L7 devices can be added as either physical appliances attached to the leaf switches or they can be

virtual appliances running on virtualized servers. Cisco ACI treats the L4-L7 devices like load balancers, and

ﬁrewalls as L4-L7 concrete devices with concrete interfaces. However, the L4-L7 service graph is composed of

abstract nodes. The L4-L7 concrete devices have to be conﬁgured in a device cluster conﬁguration and this

abstraction is called a logical device. The logical device has logical interfaces that are mapped to concrete

interfaces on the concrete device.

The device selection policy provides a device cluster or logical device that can be selected based on a

contract name, a graph name, or the function node name inside the service graph. Device selection policy

is depicted in Figure 17. The device selection policy dictates the device cluster used during service graph

rendering. The APIC allocates VLAN for a function node connector during service graph rendering to allocate

VLAN to the logical interfaces of the device cluster. VLAN information is pushed to the concrete interfaces

during service graph instantiation.

Figure 17: L4-L7 device selection policy

Figure 18 shows how to add an L4-L7 device (concrete and logical) from the APIC GUI. The physical interfaces

Ethernet 11 and Ethernet 12 that are attached to the leaf switches 105 and 106 can be speciﬁed here. The APIC

also allows you to specify the direction for the attached interfaces.

1 2 ... 11 12 13 14 15 16 17 18 19 20 21

Sem comentários

ADC SG-1 Manual do Utilizador Página 16