An engineer must configure multiple EPGs on a single access port in a large Cisco ACI fabric without using VMM integration.
The relevant access policies and tenant policies have been created.
A single AAEP is used to configure the access ports in the fabric.
Which two additional steps must be taken to complete the configuration? (Choose two.)
Click on the arrows to vote for the correct answer
A. B. C. D. E.BE.
Sure, I'll do my best to provide a detailed explanation of the answer options.
The scenario describes a requirement to configure multiple EPGs on a single access port in a large Cisco ACI fabric without using VMM integration. A single AAEP is used to configure the access ports in the fabric, and the relevant access policies and tenant policies have been created. The question asks for two additional steps that must be taken to complete the configuration.
A. The EPGs must link directly to the corresponding AAEP: This option is correct because an EPG can only communicate with another EPG if they are associated with the same physical domain and are both configured with the same VLAN or VXLAN ID. By linking the EPGs directly to the corresponding AAEP, the traffic from the EPGs will be able to flow to other EPGs in the same physical domain. This step can be achieved by selecting the correct switch profile and port profile, and then associating the EPGs to the access port.
B. A contract must be defined between the EPGs: This option is also correct because a contract defines the allowed communication between EPGs. Contracts can be used to permit or deny traffic between EPGs, and they can also define the QoS policies for the traffic. To create a contract, you would need to define a subject, which specifies the types of traffic that the contract applies to. You would then define one or more filters, which specify the traffic that is allowed or denied. Finally, you would associate the contract with the EPGs that need to communicate.
C. The EPGs must be configured as static ports: This option is incorrect because static ports are used for devices that are not running an endpoint learning protocol, such as a server that has a static IP address. EPGs are not configured as static ports; instead, they are associated with a VLAN or VXLAN ID and use an endpoint learning protocol such as Address Resolution Protocol (ARP) or Address Resolution Protocol for IPv6 (ND). The fabric learns the endpoints dynamically and creates the forwarding table entries accordingly.
D. The corresponding bridge domains must be configured in legacy mode: This option is also incorrect because legacy mode is not recommended in ACI, and it is only used for migration purposes. Legacy mode is a configuration option that allows the fabric to operate as a traditional layer 2 or layer 3 network, without using the full ACI features. In this scenario, the requirement is to configure EPGs in a large Cisco ACI fabric, which means that the fabric should be configured in ACI mode, not legacy mode.
E. The EPGs must be linked to the correct physical domain: This option is partially correct because EPGs must be associated with the correct physical domain to communicate with other EPGs in the same domain. However, the scenario already states that a single AAEP is used to configure the access ports in the fabric, which means that the physical domain is already defined. Therefore, this option is not one of the additional steps required to complete the configuration.
In summary, the two correct options are A and B. The EPGs must link directly to the corresponding AAEP, and a contract must be defined between the EPGs.