View Cart
0 Items | Total: US$0.00
Welcome,      Register

You are here

ESG

DC0073 - ACI 6.0 Service Graph Go-Through (Part 2)

This video demonstrates how to insert a transparent virtual FTD firewall between endpoints on the same subnet using Go-Through mode Service Graph in Cisco ACI 6.0. In the Go-Through mode, FW bridges traffic between two BDs without acting as a default gateway. The lab shows configuration of Service Graph and applying the graph between ESGs with a use of VMM integration. A second scenario shows that Service Graph also works with uSeg EPGs, a capability not supported in earlier ACI versions.

Rating: 
0
No votes yet
Difficulty Level: 
4

DC0073 - ACI 6.0 Service Graph Go-Through (Part 1)

This video demonstrates how to insert a transparent virtual FTD firewall between endpoints on the same subnet using Go-Through mode Service Graph in Cisco ACI 6.0. In the Go-Through mode, FW bridges traffic between two BDs without acting as a default gateway. The lab shows configuration of Service Graph and applying the graph between ESGs with a use of VMM integration. A second scenario shows that Service Graph also works with uSeg EPGs, a capability not supported in earlier ACI versions.

Rating: 
0
No votes yet
Difficulty Level: 
4

DC0072 - ACI 6.0 Service Graph Go-To (Part 3)

This video demonstrates how to insert a physical firewall into traffic flows using Go-To mode Service Graph in Cisco ACI 6.0. In the Go-To mode, the FW takes over as the default gateway while ACI provides L2 connectivity between endpoint BDs and the FW. The lab covers building all required physical and logical constructs then applying the graph between ESGs. A second scenario extends the setup to allow WEB and APP ESGs to reach external networks through the FW as a transit L3OUT.

Rating: 
0
No votes yet
Difficulty Level: 
4

DC0072 - ACI 6.0 Service Graph Go-To (Part 2)

This video demonstrates how to insert a physical firewall into traffic flows using Go-To mode Service Graph in Cisco ACI 6.0. In the Go-To mode, the FW takes over as the default gateway while ACI provides L2 connectivity between endpoint BDs and the FW. The lab covers building all required physical and logical constructs then applying the graph between ESGs. A second scenario extends the setup to allow WEB and APP ESGs to reach external networks through the FW as a transit L3OUT.

Rating: 
0
No votes yet
Difficulty Level: 
4

DC0072 - ACI 6.0 Service Graph Go-To (Part 1)

This video demonstrates how to insert a physical firewall into traffic flows using Go-To mode Service Graph in Cisco ACI 6.0. In the Go-To mode, the FW takes over as the default gateway while ACI provides L2 connectivity between endpoint BDs and the FW. The lab covers building all required physical and logical constructs then applying the graph between ESGs. A second scenario extends the setup to allow WEB and APP ESGs to reach external networks through the FW as a transit L3OUT.

Rating: 
0
No votes yet
Difficulty Level: 
4

DC0071 - ACI 6.0 Shared Services (ESG) (Part 3)

This video demonstrates how to configure shared services using ESG in Cisco ACI 6.0. The lab covers three main scenarios; same-tenant inter-VRF access, cross-tenant inband management access, and a shared L3OUT for ESG endpoints in a separate VRF. There is a bonus section at the end of the video on inter-VRF multicast distribution using route maps and a static RP. You will be able to see that ESG separation of security from networking makes shared service configuration more intuitive, as all route leaking is consolidated under the VRF rather than scattered across BD and EPG subnet settings.

Rating: 
0
No votes yet
Difficulty Level: 
4

DC0071 - ACI 6.0 Shared Services (ESG) (Part 2)

This video demonstrates how to configure shared services using ESG in Cisco ACI 6.0. The lab covers three main scenarios; same-tenant inter-VRF access, cross-tenant inband management access, and a shared L3OUT for ESG endpoints in a separate VRF. There is a bonus section at the end of the video on inter-VRF multicast distribution using route maps and a static RP. You will be able to see that ESG separation of security from networking makes shared service configuration more intuitive, as all route leaking is consolidated under the VRF rather than scattered across BD and EPG subnet settings.

Rating: 
0
No votes yet
Difficulty Level: 
4

DC0071 - ACI 6.0 Shared Services (ESG) (Part 1)

This video demonstrates how to configure shared services using ESG in Cisco ACI 6.0. The lab covers three main scenarios; same-tenant inter-VRF access, cross-tenant inband management access, and a shared L3OUT for ESG endpoints in a separate VRF. There is a bonus section at the end of the video on inter-VRF multicast distribution using route maps and a static RP. You will be able to see that ESG separation of security from networking makes shared service configuration more intuitive, as all route leaking is consolidated under the VRF rather than scattered across BD and EPG subnet settings.

Rating: 
0
No votes yet
Difficulty Level: 
4

DC0069 - ACI 6.0 Endpoint Security Group (Part 3)

The video introduces you to a concept of Endpoint Security Group (ESG) in Cisco ACI 6.0. The lab walks through migrating existing EPG endpoints into ESGs using various selector types including EPG selectors, IP tags, MAC tags, and VMM-based attributes like VM name and VM tags. This demonstrates how each selector type affects switching versus routed traffic enforcement. The key takeaway is that ESGs provide a flexible, app-centric security model that supports multi-BD grouping and granular endpoint classification, making them well-suited for greenfield deployments or as a migration path from EPG-based policy.

Rating: 
0
No votes yet
Difficulty Level: 
4

DC0069 - ACI 6.0 Endpoint Security Group (Part 2)

The video introduces you to a concept of Endpoint Security Group (ESG) in Cisco ACI 6.0. The lab walks through migrating existing EPG endpoints into ESGs using various selector types including EPG selectors, IP tags, MAC tags, and VMM-based attributes like VM name and VM tags. This demonstrates how each selector type affects switching versus routed traffic enforcement. The key takeaway is that ESGs provide a flexible, app-centric security model that supports multi-BD grouping and granular endpoint classification, making them well-suited for greenfield deployments or as a migration path from EPG-based policy.

Rating: 
0
No votes yet
Difficulty Level: 
4

Pages

Subscribe to RSS - ESG