Scribd
Upload
224 views9 pages

Cisco Aci and Vmware NSX T Integration

Uploaded by

coolboyasif
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
224 views9 pages

Cisco Aci and Vmware NSX T Integration

Uploaded by

coolboyasif
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 9

Cisco ACI and VMware NSX-T Data Center Integration

New and Changed Information 2


Integrating VMware NSX-T Data Center with Cisco ACI 2
Mapping Cisco ACI and VMware NSX-T Data Center Constructs 2
Prerequisites to Integrating VMware NSX-T Data Center 2
Integrating VMware NSX-T Data Center with Cisco ACI Using the Cisco APIC GUI 3
Integrating NSX-T Data Center Using the NX-OS Style CLI 5
Revised: October 22, 2020

New and Changed Information


The following table provides an overview of the significant changes up to this current release. The table does not provide an exhaustive
list of all changes or of the new features up to this release.

Cisco APIC Release Version Feature Description

5.1(1) Support for VMware NSX-T Data Center You can integrate VMware NSX-T Data
integration Center with Cisco Application Centric
Infrastructure (ACI). Integration enables
you to use Cisco Application Policy
Infrastructure Controller (APIC) to create
and work with VMware NSX-T Data
Center network constructs.

Integrating VMware NSX-T Data Center with Cisco ACI


Beginning with Cisco Application Policy Infrastructure Controller (APIC) Release 5.1(1), you can integrate VMware NSX-T Data
Center with Cisco Application Centric Infrastructure (ACI).
VMware NSX-T Data Center allows administrators to provision network services for ESXi environments. VMware NSX-T Data
Center uses an NSX manager; however, integration is similar to that of other virtual machine managers (VMMs).
Integrating VMware NSX-T Data Center enables administrators to use Cisco APIC to apply Cisco ACI policy inside the VMM
system.
This document provides information for integrating VMware NSX-T Data Center with Cisco ACI, including prerequisites and
installation. You should be familiar with VMware NSX-T Data Center and Cisco ACI. For detailed information about VMware
NSX-T Data Center, see the VMware website.

Mapping Cisco ACI and VMware NSX-T Data Center Constructs


The following table shows the mapping between Cisco Application Centric Infrastructure (ACI) and VMware NSX-T Data Center
constructs.

Cisco ACI VMware NSX-T Data Center

VMM Domain Transport Zone

Endpoint Group (EPG) Logical Switch

Hypervisor Transport Node

Prerequisites to Integrating VMware NSX-T Data Center


Fulfill the requirements in this section before you integrate VMware NSX-T with Cisco Application Centric Infrastructure (ACI).

2
• Ensure that you have correctly set up the Cisco Application Centric Infrastructure (ACI) fabric and Cisco Application Policy
Infrastructure Controller (APIC).
• Download and deploy the correct version of VMware NSX-T Data Center from the VMware website.
Check the Cisco ACI Virtualization Compatibility Matrix to see which version to use with your version of Cisco Application
Policy Infrastructure Controller (APIC). Also fulfill the requirements on the VMware website.
• Configure the VMware NSX-T Data Center to include hosts that are connected to Cisco ACI fabric.
Follow the installation and configuration instructions on the VMware website.

Integrating VMware NSX-T Data Center with Cisco ACI Using the Cisco
APIC GUI
Complete the procedures in this section to integrate VMware NSX-T Data Center with Cisco Application Centric Infrastructure (ACI)
using the Cisco Application Policy Infrastructure Controller (APIC) GUI.

Create a VMM Domain Profile


Virtual machine manager (VMM) domain profiles specify connectivity policies that enable virtual machine controllers to connect to
the Cisco Application Centric Infrastructure (ACI) fabric. They group VM controllers with similar networking policy requirements.
For example, VM controllers can share VLAN pools and application endpoint groups (EPGs).
Follow the procedure in this section to create a VMware NSX-T Data Center VMM profile.

Before you begin


Fulfill the following prerequisites before you create a VMM domain profile for VMware NSX-T Data Center:
• Ensure that all Cisco ACI fabric nodes are discovered and configured.
• Configure out-of-band (oob) management on the Cisco Application Policy Infrastructure Controller (APIC).

Procedure

Step 1 Log in to Cisco APIC.


Step 2 Go to Virtual Networking > VMware SDN.
The Domains page appears.

Step 3 At the upper right of the Domains page, click Actions and then click Create Domain.
Step 4 In the Create Domain page, complete the following steps:
a) In the General area, in the Name field, enter a name for the domain.
b) In the Settings > Access Mode area, choose Read Only or Read Write.
The results of the choice vary as follows:
• If there is a Transport Zone in VMware NSX-T Data Center matching the name that you entered for the domain,
choosing Read Write enables you to view inventory information and manage that Transport Zone. Choosing
Read Only enables you only to view inventory information of that Transport Zone.

3
• If there is no Transport Zone in VMware NSX-T Data Center matching the name that you entered for the domain,
choosing Read Write creates a new Transport Zone with that name. Choosing Read Only does not.

c) In the Settings > Access Mode area, click Select VLAN Pool.
d) In the Select VLAN Pool dialog box, choose an existing VLAN pool or create a new one.
e) In the Create Domain page, in the Settings > Attachable Access Entity Profile area, click Add Attachable Access
Entity Profile.
f) In the Select Attachable Access Entity Profile dialog box, choose an existing attachable access entity profile or
create a new one.
g) In the Create Domain page, in the Settings > Controller area, click Add Controller.
h) In the Controller area, enter a name for the controller and the hostname or IP address in the appropriate fields, and
then click Select Credentials.
If you have configured a virtual IP address for your VMware NSX-T Data Center cluster, you can use it as the
controller IP address. Otherwise, you can use the IP address of any of the NSX Managers in the cluster as the controller
IP address. You can configure a virtual IP address for VMware NSX-T Data Center later.
Note Do not add multiple NSX manager IP addresses from the same cluster as separate controller IP addresses
for the same VMware NSX-T Data Center domain.
i) In the Select Credentials dialog box, click Create Credentials.
j) In the Create Credentials dialog box, enter a name for the credentials, a username, and a password, and then click
Save.
k) In the Create Domain page, in the Settings > Controller area, click the check mark at the right of the page to confirm
the controller configuration.
l) (Optional) Change the delimiter, or configure a security domain.
For the delimiter for the VMware NSX-T Data Center domain, you can use one of the following symbols: _, !, ^, or
+. If you do not enter a symbol, the system uses the default _ (underscore) delimiter in the VMware PortGroup name.
When you associate an EPG with a VMM domain, a default name is generated for the new logical switch:
TenantName_ApplicationProfile_EPGName. The delimiter is the special character that separates words the name;
this example uses the _ (underscore).
m) Click Save.

What to do next
• On VMware NSX-T Data Center, associate the Transport Zone that is created or managed by Cisco ACI to the Transport Nodes
(hosts) that were connected to the Cisco ACI fabric.
• Complete the procedure Associate an EPG with the Domain, on page 4.

Associate an EPG with the Domain


After you create a virtual machine manager (VMM) domain for VMware NSX-T Data Center, associate one or more endpoint group
(EPGs) with the new domain.

Before you begin


• Create a VMM domain, following the procedure in Create a VMM Domain Profile, on page 3.

4
• Create a tenant, an application profile, and at least one EPG.
• Enable neighbor discovery to reflect virtual-machine-manager (VMM)-learned endpoints.
You enable neighbor discovery through the Cisco Discovery Protocol (CDP) or the Link Layer Discovery Protocol (LLDP)
when you configure interface policy groups. Enable LLDP or CDP under the policy group for the Transport Node to enable
neighbor discovery. Enabling neighbor discovery is required for endpoint groups (EPGs) to reflect VMM-learned endpoints.

Procedure

Step 1 Log in to Cisco APIC.


Step 2 Go to Tenants > tenant > Application Profiles > application_profile > Application EPGs > application_epg > Domains
(VMs and Bare-Metals.
Step 3 Choose Domains (VMs and Bare-Metals, click the action icon at the upper right of the central pane and choose Add
VMM Domain Association.
The action icon shows a crossed hammer and wrench.

Step 4 In the Add VMM Domain Association dialog box, from the VMM Domain Name drop-down list, choose the VMware
NSX-T Data Center domain that you created before.
Step 5 Choose other options in the Add VMM Domain Association appropriate to your setup.
Step 6 Click Submit.
This action creates a logical switch in the NSX Manager that is associated with the Transport Zone that you used in the
section Create a VMM Domain Profile, on page 3. The switch has the default name
TenantName_ApplicationProfile_EPGName.

Integrating NSX-T Data Center Using the NX-OS Style CLI


Complete the procedures in this section to integrate VMware NSX-T Data Center with Cisco Application Centric Infrastructure (ACI)
using the NX-OS style CLI.

Configure a VLAN Pool


Complete the procedure in this section to configure a VLAN pool for the VMware NSX-T Data Center domain.

Before you begin


Complete the tasks in the section Prerequisites to Integrating VMware NSX-T Data Center, on page 2.

Procedure
Configure the VLAN pool as shown in the following example:
apic1(config)# vlan-domain pool1 dynamic
apic1(config-vlan)# vlan 5-20 dynamic
apic1(config-vlan)# vlan 30-40
apic1(config-vlan)# exit
apic1(config)#

5
What to do next
Complete the procedure in Associate the VLAN Pool with Network Interfaces, on page 6.

Associate the VLAN Pool with Network Interfaces


Complete the procedure in this section to associate the VMware NSX-T Data Center VLAN pool with network interfaces.

Before you begin


Complete the tasks in the section Prerequisites to Integrating VMware NSX-T Data Center, on page 2.

Procedure
Associate the VLAN pool with network interfaces as shown in the following example:
apic1(config)# leaf 101
apic1(config-leaf)# interface ethernet 1/2-3
apic1(config-leaf-if)# vlan-domain member pool1
apic1(config-leaf-if)# exit
apic1(config-leaf)# exit
apic1(config)#

What to do next
Complete the procedure in Create a VMware NSX-T Data Center Domain, on page 6.

Create a VMware NSX-T Data Center Domain


Complete the procedure in this section to create a VMware NSX-T Data Center virtual machine manager (VMM) domain.

Before you begin


Complete the tasks in the section Prerequisites to Integrating VMware NSX-T Data Center, on page 2.

Procedure
Create a VMM domain as shown in the following example:
apic1(config)# vmware-domain nsxDom delimiter _
apic1(config-vmware)# configure-nsx
apic1(config-vmware-nsx)# exit
apic1(config-vmware)#

What to do next
Complete the procedure in the section Add a Controller for the VMware NSX-T Data Center Domain, on page 6.

Add a Controller for the VMware NSX-T Data Center Domain


Complete the procedure in this section to add a controller for the VMware NSX-T Data Center virtual machine manager (VMM)
domain.
If you have configured a virtual IP address for your VMware NSX-T Data Center cluster, you can use it as the controller IP address.
Otherwise, you can use the IP address of any of the NSX Managers in the cluster as the controller IP address. You can configure a
virtual IP address for VMware NSX-T Data Center later.

6
Note Do not add multiple NSX manager IP addresses from the same cluster as separate controller IP addresses for the same VMware
NSX-T Data Center domain.

Before you begin


Complete the tasks in the section Prerequisites to Integrating VMware NSX-T Data Center, on page 2.

Procedure
Add a controller as shown in the following example:
apic1(config-vmware)# nsx 10.192.225.32
apic1(config-vmware-nsx)# username admin
Password:
Retype password:
apic1(config-vmware-nsx)# exit
apic1(config)# exit

What to do next
Complete the procedure in the section Associate a Domain with a VLAN Pool, on page 7

Associate a Domain with a VLAN Pool


Complete the procedure in this section to associate the VMware NSX-T Data Center virtual machine manager (VMM) domain with
a VLAN pool.

Before you begin


Complete the tasks in the section Prerequisites to Integrating VMware NSX-T Data Center, on page 2.

Procedure
Associate the VMM domain with a VLAN pool as shown in the following example:
apic1(config-vmware)# vlan-domain member pool1
apic1(config-vmware)#

7
© 2020 Cisco Systems, Inc. All rights reserved.
Americas Headquarters Asia Pacific Headquarters Europe Headquarters
Cisco Systems, Inc. CiscoSystems(USA)Pte.Ltd. CiscoSystemsInternationalBV
San Jose, CA 95134-1706 Singapore Amsterdam,TheNetherlands
USA

Cisco has more than 200 offices worldwide. Addresses, phone numbers, and fax numbers are listed on the
Cisco Website at www.cisco.com/go/offices.

You might also like