Which feature allows firewall ACLs to be configured automatically when new endpoints are attached to an EPG?
Click on the arrows to vote for the correct answer
A. B. C. D.B.
The feature that allows firewall ACLs (Access Control Lists) to be configured automatically when new endpoints are attached to an EPG (Endpoint Group) in the Cisco Application Centric Infrastructure (ACI) is called "dynamic endpoint attach."
In ACI, an EPG is a group of endpoints that have similar network requirements and policies. When a new endpoint is attached to an EPG, the dynamic endpoint attach feature automatically creates the necessary firewall ACLs to control the traffic flow to and from the new endpoint. This ensures that the new endpoint is properly secured and isolated from other endpoints that it should not communicate with.
Dynamic endpoint attach leverages the capabilities of the ACI fabric to automate the configuration of firewall ACLs, which reduces the risk of misconfiguration or human error. This feature also enables security policies to be enforced dynamically as endpoints move between different EPGs or locations within the ACI fabric.
ARP gleaning is a feature in ACI that allows the fabric to learn the IP addresses of endpoints by intercepting Address Resolution Protocol (ARP) requests. This feature is useful in virtualized environments where IP addresses can change frequently.
Hardware proxy is a feature that allows a device to act as a proxy for other devices on the network. In ACI, hardware proxy can be used to optimize traffic flow between endpoints and services within the fabric.
Network-stitching is a feature in ACI that allows different fabrics to be connected together to form a larger network. This feature is useful in multi-site deployments where multiple ACI fabrics need to be connected to provide a unified network infrastructure.