Step 1 - Navigate to Application Profiles in the Tenants Tab under Tenant
Step 2 - Create Application Profile
In this step, we will be creating one EPG named aci_p02_epg_L2 which will allow internal devices in the ACI to be able to
communicate to the Outside Network.
Name the of the Application Profile
aci_p02_ap_L2
Click on the Plus (+) Sign
Step 3 - Create L2 EPG
During this step, we need to input the following parameters:
Name of the EPG :
aci_p02_epg_L2
BD : This is the BD that is going to be associated to the EPG aci_p02_bd_l2
Domain: aci_p02_physdom.
Click Update
Click Submit
Step 4 - Add Static Path
In this step we will be adding the physical ports to our EPG in order to establish a connection to the outside of the fabric. We will be connecting
to a N7K via Port-Channel. In order to add Static Ports, we need to follow these steps:
Expand the Tenant aci_p02_tenant
Expand Application Profiles folder
Expand the of the Application Profile aci_p02_ap_L2
Expand Application EPG's folder
Expand Application EPG aci_p02_epg_L2
Right click on Static Ports
Click on Deploy Static EPG on PC, VPC, or Interface
Step 5 - Deploy Static Port-Channel
In this screen we need to add the physical Leaf Port(s) that ACI is using to connect to the N9K. We also need to
specify the VLAN number that the N9K is using.
Change the Path Type to Direct Port Channel
Path = aci_p02_intpolg_pc
Port Encap (or Secondary VLAN for Micro-Seg): 200
Click Submit
Click Submit
Please verify your work before proceeding.
ACI Object
This is the response from the fabric as to what is configured.
Verify your work
Step 6 - Layer 2 Verification
Once we have completed adding the Static Path to the configuration. It is time to verify that we have connectivity to
the N9K.
If you closed the window for the Nexus 9K you can
click on the console ICON on the left to start the connection to the Nexus9K we
are using as the external L3 connection. Username: acipod02 Password: cisco.123
Log to the N9K and verify the Port-Channel is up and running.
show port-channel summary interface Port-Channel 2
N9K-Ext-Rtr# show port-channel summary interface port-channel 2
L5 Eth 120 BR Eth1/3
Flags: D - Down P - Up in port-channel (members)
I - Individual H - Hot-standby (LACP only)
s - Suspended r - Module-removed
b - BFD Session Wait
S - Switched R - Routed
U - Up (port-channel)
p - Up in delay-lacp mode (member)
M - Not in use. Min-links not met
--------------------------------------------------------------------------------
Group Port- Type Protocol Member Ports
Channel
--------------------------------------------------------------------------------
2 Po2(SU) Eth NONE Eth101/1/3(P) Eth101/1/4(P)
