Cisco APIC Layer 4 to Layer 7 Services Deployment Guide, Release 1.2(1x) PDF
Preview Cisco APIC Layer 4 to Layer 7 Services Deployment Guide, Release 1.2(1x)
Cisco APIC Layer 4 to Layer 7 Services Deployment Guide, Release 1.2(1x) First Published: December07,2015 Last Modified: January06,2016 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 THESPECIFICATIONSANDINFORMATIONREGARDINGTHEPRODUCTSINTHISMANUALARESUBJECTTOCHANGEWITHOUTNOTICE.ALLSTATEMENTS, INFORMATION,ANDRECOMMENDATIONSINTHISMANUALAREBELIEVEDTOBEACCURATEBUTAREPRESENTEDWITHOUTWARRANTYOFANYKIND, EXPRESSORIMPLIED.USERSMUSTTAKEFULLRESPONSIBILITYFORTHEIRAPPLICATIONOFANYPRODUCTS. THESOFTWARELICENSEANDLIMITEDWARRANTYFORTHEACCOMPANYINGPRODUCTARESETFORTHINTHEINFORMATIONPACKETTHATSHIPPEDWITH THEPRODUCTANDAREINCORPORATEDHEREINBYTHISREFERENCE.IFYOUAREUNABLETOLOCATETHESOFTWARELICENSEORLIMITEDWARRANTY, CONTACTYOURCISCOREPRESENTATIVEFORACOPY. TheCiscoimplementationofTCPheadercompressionisanadaptationofaprogramdevelopedbytheUniversityofCalifornia,Berkeley(UCB)aspartofUCB'spublicdomainversion oftheUNIXoperatingsystem.Allrightsreserved.Copyright©1981,RegentsoftheUniversityofCalifornia. NOTWITHSTANDINGANYOTHERWARRANTYHEREIN,ALLDOCUMENTFILESANDSOFTWAREOFTHESESUPPLIERSAREPROVIDED“ASIS"WITHALLFAULTS. CISCOANDTHEABOVE-NAMEDSUPPLIERSDISCLAIMALLWARRANTIES,EXPRESSEDORIMPLIED,INCLUDING,WITHOUTLIMITATION,THOSEOF MERCHANTABILITY,FITNESSFORAPARTICULARPURPOSEANDNONINFRINGEMENTORARISINGFROMACOURSEOFDEALING,USAGE,ORTRADEPRACTICE. INNOEVENTSHALLCISCOORITSSUPPLIERSBELIABLEFORANYINDIRECT,SPECIAL,CONSEQUENTIAL,ORINCIDENTALDAMAGES,INCLUDING,WITHOUT LIMITATION,LOSTPROFITSORLOSSORDAMAGETODATAARISINGOUTOFTHEUSEORINABILITYTOUSETHISMANUAL,EVENIFCISCOORITSSUPPLIERS HAVEBEENADVISEDOFTHEPOSSIBILITYOFSUCHDAMAGES. AnyInternetProtocol(IP)addressesandphonenumbersusedinthisdocumentarenotintendedtobeactualaddressesandphonenumbers.Anyexamples,commanddisplayoutput,network topologydiagrams,andotherfiguresincludedinthedocumentareshownforillustrativepurposesonly.AnyuseofactualIPaddressesorphonenumbersinillustrativecontentisunintentional andcoincidental. CiscoandtheCiscologoaretrademarksorregisteredtrademarksofCiscoand/oritsaffiliatesintheU.S.andothercountries.ToviewalistofCiscotrademarks,gotothisURL:http:// www.cisco.com/go/trademarks.Third-partytrademarksmentionedarethepropertyoftheirrespectiveowners.Theuseofthewordpartnerdoesnotimplyapartnership relationshipbetweenCiscoandanyothercompany.(1110R) ©2015-2016CiscoSystems,Inc.Allrightsreserved. CONTENTS Preface Preface ix Audience ix DocumentConventions ix RelatedDocumentation xi DocumentationFeedback xiii ObtainingDocumentationandSubmittingaServiceRequest xiii CHAPTER 1 Overview 1 AboutDeployingApplication-CentricInfrastructureLayer4toLayer7Services 1 ConfiguringLayer4toLayer7ServicesUsingtheGUI 2 AboutServiceGraphTemplates 2 CHAPTER 2 ImportingaDevicePackage 5 AbouttheDevicePackage 5 InstallingaDevicePackageUsingREST 6 ImportingaDevicePackageUsingtheGUI 6 CHAPTER 3 DefiningaLogicalDevice 7 AboutDeviceClusters 7 AboutManagedDeviceClusters 8 AboutUnmanagedDeviceClusters 8 AboutConcreteDevices 8 CreatingaDeviceUsingtheGUI 8 UsinganImportedDeviceUsingtheRESTAPIs 11 UsinganImportedDeviceUsingtheCLI 11 VerifyingtheImportofaDeviceUsingtheGUI 12 Cisco APIC Layer 4 to Layer 7 Services Deployment Guide, Release 1.2(1x) iii Contents CHAPTER 4 ConfiguringConnectivitytoDevices 13 AboutIn-BandManagementforDevices 13 ConfiguringIn-BandManagementforDevicesUsingtheGUI 14 TroubleshootingIn-BandManagementforDevicesUsingtheGUI 15 CHAPTER 5 SelectingaLayer4toLayer7DevicetoRenderaGraph 17 AboutDevice(LogicalDevice)Contexts 17 ConfiguringaLogicalDeviceContextUsingtheGUI 17 ConfiguringaDeviceSelectionPolicyUsingRESTAPIs 18 CreatingaDeviceContextUsingtheRESTAPIs 19 AddingaLogicalInterfaceinaDeviceUsingtheRESTAPIs 19 ConfiguringtheDeviceSelectionPolicyUsingtheCLI 19 CHAPTER 6 ConfiguringaServiceGraph 21 AboutServiceGraphs 21 AboutFunctionNodes 21 AboutFunctionNodeConnectors 22 AboutServiceGraphConnections 22 AboutTerminalNodes 22 AboutServiceGraphTemplateConfigurationParameters 22 ConfiguringServiceGraphTemplatesUsingtheGUI 22 CreatingaServiceGraphTemplateUsingtheRESTAPIs 22 ConfiguringaServiceGraphUsingtheCLI 23 CHAPTER 7 ConfiguringRoutePeering 27 AboutRoutePeering 27 OpenShortestPathFirstPolicies 29 BorderGatewayProtocolPolicies 32 SelectinganL3extOutPolicyforaCluster 35 RoutePeeringEnd-to-EndFlow 37 CiscoApplicationCentricInfrastructureFabricServingAsaTransitRoutingDomain 38 ConfiguringRoutePeeringUsingtheGUI 39 CreatingaStaticVLANPoolUsingtheGUI 40 CreatinganExternalRoutedDomainUsingtheGUI 41 Cisco APIC Layer 4 to Layer 7 Services Deployment Guide, Release 1.2(1x) iv Contents CreatinganExternalRoutedNetworkUsingtheGUI 41 CreatingaRouterConfigurationUsingtheGUI 43 CreatingaServiceGraphAssociationUsingtheGUI 44 ConfiguringRoutePeeringUsingtheCLI 44 TroubleshootingRoutePeering 45 VerifyingtheLeafSwitchRoutePeeringFunctionalityUsingtheCLI 46 CHAPTER 8 ConfiguringDirectServerReturn 51 AboutDirectServerReturn 51 Layer2DirectServerReturn 52 AboutDeployingLayer2DirectServerReturnwithCiscoApplicationCentric Infrastructure 54 SupportedDirectServerReturnConfiguration 55 DirectServerReturnArchitecture 55 ExampleXMLPOSTofDirectServerReturnforStaticServiceDeployment 57 DirectServerReturnforStaticServiceDeployment 58 DirectServerReturnforStaticServiceDeploymentLogicalModel 58 DirectServerReturnforServiceGraphInsertion 58 DirectServerReturnSharedLayer4toLayer7ServiceConfiguration 59 ConfiguringtheCitrixServerLoadBalancerforDirectServerReturn 59 ConfiguringaLinuxServerforDirectServerReturn 59 CHAPTER 9 ConfiguringUnmanagedMode 61 AbouttheUnmanagedMode 61 AboutManagedandUnmanagedLogicalDevices 62 AboutManagedandUnmanagedFunctionNodes 62 AboutLayer4toLayer7ServicesEndpointGroups 63 UsingStaticEncapsulationforaGraphConnector 63 CreatingaPhysicalDeviceUsingtheCLI 64 CreatingaHighAvailablityClusterUsingtheCLI 64 CreatingaVirtualDeviceUsingtheCLI 65 ExampleXMLfortheUnmanagedMode 66 ExampleXMLofCreatinganUnmanagedLDevVipObject 66 ExampleXMLofCreatinganUnmanagedAbsNodeObject 66 Cisco APIC Layer 4 to Layer 7 Services Deployment Guide, Release 1.2(1x) v Contents ExampleXMLofAssociatingaLayer4toLayer7ServiceEndpointGroupwitha Connector 67 ExampleXMLofUsingStaticEncapsulationwithaLayer4toLayer7ServiceEndpoint Group 67 UnmanagedModeBehavior 67 CHAPTER 10 ConfigurationParameters 69 ConfigurationParametersInsidetheDevicePackageSpecification 69 ConfigurationScopeofaDevicePackageSpecification 71 ExampleXMLofConfigurationParametersInsidetheDevicePackage 72 ConfigurationParametersInsideAnAbstractFunctionProfile 72 ConfigurationScopeofanAbstractFunctionProfile 74 ExampleXMLPOSTforanAbstractFunctionProfileWithConfigurationParameters 75 ConfigurationParametersInsideanAbstractFunctionNodeinaServiceGraph 76 ExampleXMLPOSTforanAbstractFunctionNodeWithConfigurationParameters 78 ConfigurationParametersInsideVariousConfigurationMOs 79 ExampleXMLPOSTforanApplicationEPGWithConfigurationParameters 81 ParameterResolution 83 LookingUpanMODuringParameterResolution 84 AboutRole-BasedAccessControlRuleEnhancements 85 Role-BasedAccessControlRuleArchitecture 85 Role-BasedAccessControlRuleSystemFlow 87 CHAPTER 11 UsingaServiceGraphTemplate 89 AssociatingServiceGraphTemplateswithContractsandEPGsUsingtheGUI 89 ConfiguringaServiceGraphTemplateUsingtheCLI 89 ConfiguringaServiceGraphTemplateUsingtheRESTAPIs 90 CreatingaSecurityPolicyUsingtheRESTAPIs 90 CHAPTER 12 MonitoringaServiceGraph 93 MonitoringaServiceGraphInstanceUsingtheGUI 93 MonitoringServiceGraphFaultsUsingtheGUI 94 ResolvingServiceGraphFaults 95 MonitoringaVirtualDeviceUsingtheGUI 99 MonitoringDeviceClusterandServiceGraphStatusUsingtheCLI 100 Cisco APIC Layer 4 to Layer 7 Services Deployment Guide, Release 1.2(1x) vi Contents CHAPTER 13 ConfiguringAdministratorRolesforManagingaServiceConfiguration 103 AboutPrivileges 103 ConfiguringaRoleforDeviceManagement 104 ConfiguringaRoleforServiceGraphTemplateManagement 104 ConfiguringaRoleforUploadingDevicePackage 104 ConfiguringaRoleforExportingDevices 104 CHAPTER 14 DevelopingAutomation 105 AbouttheRESTAPIs 105 ExamplesofAutomatingUsingtheRESTAPIs 106 CHAPTER 15 UsingtheGUI 113 DeployingtheLayer4toLayer7ServicesUsingtheGUI 113 ImportingaDevicePackage 114 CreatingaFunctionProfile 114 UsinganExistingFunctionProfiletoCreateaNewFunctionProfile 116 CreatingaLayer4toLayer7ServiceGraphTemplateUsingtheGUI 116 ModifyingaDevice 117 ApplyingaServiceGraphTemplatetoEndpointGroups 118 Cisco APIC Layer 4 to Layer 7 Services Deployment Guide, Release 1.2(1x) vii Contents Cisco APIC Layer 4 to Layer 7 Services Deployment Guide, Release 1.2(1x) viii Preface Thisprefaceincludesthefollowingsections: • Audience, page ix • DocumentConventions, page ix • RelatedDocumentation, page xi • DocumentationFeedback, page xiii • ObtainingDocumentationandSubmittingaServiceRequest, page xiii Audience Thisguideisintendedprimarilyfordatacenteradministratorswithresponsibilitiesandexpertiseinoneor moreofthefollowing: •Virtualmachineinstallationandadministration •Layer4toLayer7Servicesinstallationandadministration •Switchandnetworkadministration Document Conventions Commanddescriptionsusethefollowingconventions: Convention Description bold Boldtextindicatesthecommandsandkeywordsthatyouenterliterally asshown. Italic Italictextindicatesargumentsforwhichtheusersuppliesthevalues. [x] Squarebracketsencloseanoptionalelement(keywordorargument). Cisco APIC Layer 4 to Layer 7 Services Deployment Guide, Release 1.2(1x) ix Preface Document Conventions Convention Description [x|y] Squarebracketsenclosingkeywordsorargumentsseparatedbyavertical barindicateanoptionalchoice. {x|y} Bracesenclosingkeywordsorargumentsseparatedbyaverticalbar indicatearequiredchoice. [x{y|z}] Nestedsetofsquarebracketsorbracesindicateoptionalorrequired choiceswithinoptionalorrequiredelements.Bracesandaverticalbar withinsquarebracketsindicatearequiredchoicewithinanoptional element. variable Indicatesavariableforwhichyousupplyvalues,incontextwhereitalics cannotbeused. string Anonquotedsetofcharacters.Donotusequotationmarksaroundthe stringorthestringwillincludethequotationmarks. Examplesusethefollowingconventions: Convention Description screen font Terminalsessionsandinformationtheswitchdisplaysareinscreenfont. boldface screen font Informationyoumustenterisinboldfacescreenfont. italicscreenfont Argumentsforwhichyousupplyvaluesareinitalicscreenfont. <> Nonprintingcharacters,suchaspasswords,areinanglebrackets. [] Defaultresponsestosystempromptsareinsquarebrackets. !,# Anexclamationpoint(!)orapoundsign(#)atthebeginningofaline ofcodeindicatesacommentline. Thisdocumentusesthefollowingconventions: Note Meansreadertakenote.Notescontainhelpfulsuggestionsorreferencestomaterialnotcoveredinthe manual. Caution Meansreaderbecareful.Inthissituation,youmightdosomethingthatcouldresultinequipmentdamage orlossofdata. Cisco APIC Layer 4 to Layer 7 Services Deployment Guide, Release 1.2(1x) x
Description:The list of books you might like
