APIC - VRF Operations

This chapter contains the following sections:

Add APIC VzAny Contract Interface To VRF

Summary
Add APIC VzAny Contract Interface To VRF.
Description
This task removes an APIC vzAny contract interface from vzAny.
Inputs
Input Description Mappable To Type Mandatory
VRF Select a VRF.​ Apic​Device​Tenant​Private​Network​Identity Y
Contract Interface Click to choose a contract interface that you want to add to the contact.​ Apic​Device​Tenant​Import​Contract​Identity Y
QOS Choose the priority level of the service contract.​ The default value is unspecified.​ Apic​Custom​Qos​Priority​Contract​Interface​Identity
Outputs
Output Description Type
APIC_​ACCOUNT APIC Account on which the selected operation was performed Apic​Device​Identity
TENANT_​NAME Tenant Name on which the selected operation was performed gen_​text_​input
TENANT_​IDENTITY APIC Tenant Identity Apic​Device​Tenant​Identity
TENANT_​PRIVATE_​NETWORK Private Network on which the selected operation was performed gen_​text_​input
PRIVATE_​NETWORK_​IDENTITY Private Network Identity Apic​Device​Tenant​Private​Network​Identity
OUTPUT_​CONTRACT_​INTERFACE_​NAME Contract Interface Name gen_​text_​input
OUTPUT_​CONTRACT_​INTERFACE_​IDENTITY Contract Interface Identity APIC_​CONTRACT_​INTERFACE_​IDENTITY

Add APIC vzAny Contract to VRF

Summary
Add Contract to VRFs vzAny.
Description
This task adds a contract to VRFs vzAny. Contracts provide a way for the Cisco Application Centric Infrastructure (ACI) administrator to control traffic flow within the ACI fabric between endpoint groups. These contracts use a provider-consumer model where one endpoint group provides the services it wants to offer and another endpoint group consumes them. Contracts are assigned a scope of Global, Tenant, VRF, or Application Profile, which limit the accessibility of the contract. A contract consists of one or more subjects. Each subject contains one or more filters. Each filter contains one or more entries. Each entry is equivalent to a line in an access control list (ACL) that is applied on the leaf switch to which the endpoint within the endpoint group is attached.
Inputs
Input Description Mappable To Type Mandatory
VRFs Select a VRF.​ Apic​Device​Tenant​Private​Network​Identity Y
Is Provided Contract Enable to add provided contract.​ Disable to add consumed contract.​ Boolean
Name Click to choose a contract name for the vz​Any.​ Apic​Device​Tenant​Contract​Identity Y
Qo​S Class Choose the priority level of the quality of service( Qo​S).​ The default value is Unspecified.​ APIC vz​Any Qo​S Class Identity Y
Contract Match Type Choose the match criteria for the contract.​ The default value is Atlease​One.​ APICvz​Any​Match​Type​Identity Y
Outputs
Output Description Type
APIC_​ACCOUNT APIC Account on which the selected operation was performed Apic​Device​Identity
TENANT_​IDENTITY APIC Tenant Identity Apic​Device​Tenant​Identity
PRIVATE_​NETWORK_​IDENTITY Private Network Identity Apic​Device​Tenant​Private​Network​Identity
OUTPUT_​TENANT_​VRF_​VZANY_​CONTRACT_​IDENTITY APIC VRF vz​Any Contract Identity APIC VRF vz​Any Contract Identity
OUTPUT_​TENANT_​VRF_​VZANY_​CONTRACT_​TYPE_​IDENTITY APIC VRF vz​Any Contract type Identity Boolean

Add APIC vzAny EPG Any Label To VRF

Summary
Add APIC vzAny EPG Any Label To VRF.
Description
This task creates vzAny EPG Any Label To VRF.
Inputs
Input Description Mappable To Type Mandatory
Select VRF Select a VRF to create labels Apic​Device​Tenant​Private​Network​Identity Y
Provided Label Name Enter unique name for the provided any label gen_​text_​input
Provided Label Tag Choose a color for the label tag.​ The default value is black APICTag​Color​Lov​Provider​TYPE
Provided Complement Check the box to enable the complement for label Boolean
Consumed Label Name Enter unique name for the consumed any label gen_​text_​input
Consumed Label Tag Choose a color for the label tag.​ The default value is black APICTag​Color​Lov​Provider​TYPE
Outputs
Output Description Type
APIC_​ACCOUNT APIC Account on which the selected operation was performed Apic​Device​Identity
TENANT_​NAME Tenant Name on which the selected operation was performed gen_​text_​input
TENANT_​IDENTITY APIC Tenant Identity Apic​Device​Tenant​Identity
TENANT_​PRIVATE_​NETWORK Private Network on which the selected operation was performed gen_​text_​input
PRIVATE_​NETWORK_​IDENTITY Private Network Identity Apic​Device​Tenant​Private​Network​Identity
TENANT_​VZANY_​ANY_​PROVIDED_​LABEL_​IDENTITY Vz​Any any Provided Label Identity APIC VRF vz​Any Label Identity
TENANT_​VZANY_​ANY_​PROVIDED_​LABEL_​TAG_​IDENTITY Vz​Any Any Provided Label Tag Identity gen_​text_​input
TENANT_​VZANY_​ANY_​CONSUMED_​LABEL_​IDENTITY Vz​Any any Consumed Label Identity APIC VRF vz​Any Label Identity
TENANT_​VZANY_​ANY_​CONSUMED_​LABEL_​TAG_​IDENTITY Vz​Any any Consumed Label Tag Identity gen_​text_​input

Add APIC vzAny Subject Label To VRF

Summary
Add APIC vzAny Subject Label To VRF.
Description
This task adds an APIC vzAny subject label to a VRF.
Inputs
Input Description Mappable To Type Mandatory
Select VRF Select a VRF to create labels.​ Apic​Device​Tenant​Private​Network​Identity Y
Provided Label Name Enter unique name for the provided subject label.​ The name can be up to 64 alphanumeric characters.​ The allowed special characters are -, _​, .​, and :.​ gen_​text_​input
Provided Label Tag Choose a color for the label tag.​ The default value is black.​ APICTag​Color​Lov​Provider​TYPE
Provided Complement Check the box to enable the complement for label.​ Defaults to unchecked.​ Boolean
Consumed Label Name Enter unique name for the provided subject label.​ The name can be up to 64 alphanumeric characters.​ The allowed special characters are -, _​, .​, and :.​ gen_​text_​input
Consumed Label Tag Choose a color for the label tag.​ The default value is black.​ APICTag​Color​Lov​Provider​TYPE
Consumed Complement Check the box to enable the complement for label.​ Defaults to unchecked.​ Boolean
Outputs
Output Description Type
APIC_​ACCOUNT APIC Account on which the selected operation was performed Apic​Device​Identity
TENANT_​NAME Tenant Name on which the selected operation was performed gen_​text_​input
TENANT_​IDENTITY APIC Tenant Identity Apic​Device​Tenant​Identity
TENANT_​PRIVATE_​NETWORK Private Network on which the selected operation was performed gen_​text_​input
PRIVATE_​NETWORK_​IDENTITY Private Network Identity Apic​Device​Tenant​Private​Network​Identity
TENANT_​VZANY_​PROVIDED_​SUBJECT_​LABEL_​NAME Provided Subject Label Name gen_​text_​input
TENANT_​VZANY_​PROVIDED_​SUBJECT_​LABEL_​IDENTITY Provided Subject Label Identity APIC_​SUBJECT_​LABEL_​IDENTITY
TENANT_​VZANY_​ANY_​PROVIDED_​LABEL_​TAG_​IDENTITY Vz​Any Any Provided Label Tag Identity gen_​text_​input
TENANT_​VZANY_​CONSUMED_​SUBJECT_​LABEL_​NAME Consumed Subject Label Name gen_​text_​input
TENANT_​VZANY_​CONSUMED_​SUBJECT_​LABEL_​IDENTITY Consumed Subject Label Identity APIC_​SUBJECT_​LABEL_​IDENTITY
TENANT_​VZANY_​ANY_​CONSUMED_​LABEL_​TAG_​IDENTITY Vz​Any any Consumed Label Tag Identity gen_​text_​input

Create VRF in APIC

Summary
Create VRF in APIC.
Description
This task creates a VRF (private network) on the APIC controller.
Inputs
Input Description Mappable To Type Mandatory
Tenant Name Provide Tenant Name Apic​Device​Tenant​Identity Y
Private Network Name Provide Private Network Name gen_​text_​input Y
Policy Enforcement Provide Policy Enforcement gen_​text_​input
Private Network Description Provide Description for Private Network gen_​text_​input
BGP Timers Provide BGP Timers Apic​Device​Tenant​BGPTimers​Identity
OSPF Timers Provide OSPF Timers Apic​Device​Tenant​OSPFTimers​Identity
Monitoring Policy Provide Monitoring Policy Apic​Device​Tenant​Monitoring​Policy​Identity
Outputs
Output Description Type
APIC_​ACCOUNT APIC Account on which the selected operation was performed Apic​Device​Identity
TENANT_​NAME Tenant Name on which the selected operation was performed gen_​text_​input
TENANT_​IDENTITY APIC Tenant Identity Apic​Device​Tenant​Identity
TENANT_​PRIVATE_​NETWORK Private Network on which the selected operation was performed gen_​text_​input
PRIVATE_​NETWORK_​IDENTITY Private Network Identity Apic​Device​Tenant​Private​Network​Identity
DEVICE_​TENANT_​OSPF_​IDENTITY Apic Tenant OSPF Identity Apic​Device​Tenant​OSPFTimers​Identity
DEVICE_​TENANT_​BGP_​IDENTITY Apic Tag Apic​Device​Tenant​BGPTimers​Identity
DEVICE_​TENANT_​MONITORING_​POLICY_​IDENTITY Apic Monitoring Policy Identity Apic​Device​Tenant​Monitoring​Policy​Identity

Delete APIC vzAny Contract from VRF

Summary
Delete Contract from VRFs vzAny.
Description
This task removes a contract from VRFs vzAny. Contracts provide a way for the Cisco Application Centric Infrastructure (ACI) administrator to control traffic flow within the ACI fabric between endpoint groups. These contracts are built using a provider-consumer model where one endpoint group provides the services it wants to offer and another endpoint group consumes them. A contracts is assigned a scope of Global, Tenant, VRF, or Application Profile, which limits the accessibility of the contract. A contract consists of one or more subjects. Each subject contains one or more filters. Each filter contains one or more entries. Each entry is equivalent to a line in an access control list (ACL) that is applied on the leaf switch to which the endpoint within the endpoint group is attached.
Inputs
Input Description Mappable To Type Mandatory
Is Provided Contract Enable to add a provided contract.​ Disable to add a consumed contract.​ Boolean
vz​Any Contract Select a vz​Any contract to be deleted.​ APIC VRF vz​Any Contract Identity Y
Outputs
Output Description Type
APIC_​ACCOUNT APIC Account on which the selected operation was performed Apic​Device​Identity
TENANT_​IDENTITY APIC Tenant Identity Apic​Device​Tenant​Identity
PRIVATE_​NETWORK_​IDENTITY Private Network Identity Apic​Device​Tenant​Private​Network​Identity
OUTPUT_​TENANT_​VRF_​VZANY_​CONTRACT_​IDENTITY APIC VRF vz​Any Contract Identity APIC VRF vz​Any Contract Identity

Delete APIC vzAny EPG Any Label from VRF

Summary
Delete APIC vzAny EPG Any Label from VRF.
Description
This task delete vzAny EPG Any Label from VRF.
Inputs
Input Description Mappable To Type Mandatory
Label Name Select a label name.​ APIC VRF vz​Any Label Identity Y
Do you want to delete the selected label From VRF? Y
Outputs
Output Description Type
APIC_​ACCOUNT APIC Account on which the selected operation was performed Apic​Device​Identity
TENANT_​NAME Tenant Name on which the selected operation was performed gen_​text_​input
TENANT_​IDENTITY APIC Tenant Identity Apic​Device​Tenant​Identity
PRIVATE_​NETWORK_​IDENTITY Private Network Identity Apic​Device​Tenant​Private​Network​Identity
TENANT_​VZANY_​ANY_​PROVIDED_​LABEL_​IDENTITY Vz​Any any Provided Label Identity APIC VRF vz​Any Label Identity
TENANT_​VZANY_​ANY_​CONSUMED_​LABEL_​IDENTITY Vz​Any any Consumed Label Identity APIC VRF vz​Any Label Identity

Delete APIC vzAny Subject Label From VRF

Summary
Delete APIC vzAny Subject Label From VRF.
Description
This task removes a subject label from a vzAny VRF.
Inputs
Input Description Mappable To Type Mandatory
Subject Label Select Subject Label to be deleted.​ APIC_​SUBJECT_​LABEL_​IDENTITY Y
Do you want to delete the selected Subject Label from vz​Any VRF? Do you want to delete the selected Subject Label from vz​Any VRF? Y
Outputs
Output Description Type
APIC_​ACCOUNT APIC Account on which the selected operation was performed Apic​Device​Identity
TENANT_​NAME Tenant Name on which the selected operation was performed gen_​text_​input
TENANT_​IDENTITY APIC Tenant Identity Apic​Device​Tenant​Identity
TENANT_​PRIVATE_​NETWORK Private Network on which the selected operation was performed gen_​text_​input
PRIVATE_​NETWORK_​IDENTITY Private Network Identity Apic​Device​Tenant​Private​Network​Identity
TENANT_​VZANY_​VRF_​SUBJECT_​LABEL_​NAME Subject Label Name gen_​text_​input
TENANT_​VZANY_​VRF_​SUBJECT_​LABEL_​IDENTITY Subject Label Identity APIC_​SUBJECT_​LABEL_​IDENTITY

Delete VRF in APIC

Summary
Delete VRF in APIC.
Description
This task deletes a VRF (private network) from the APIC controller.
Inputs
Input Description Mappable To Type Mandatory
Private Network Name Select a private network name.​ Apic​Device​Tenant​Private​Network​Identity Y
Do you want to delete the selected Private Network? Y
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the APIC device on which the selected operation was performed gen_​text_​input
APIC_​ACCOUNT APIC Account on which the selected operation was performed Apic​Device​Identity
TENANT_​NAME Tenant Name on which the selected operation was performed gen_​text_​input
TENANT_​IDENTITY APIC Tenant Identity Apic​Device​Tenant​Identity
TENANT_​PRIVATE_​NETWORK Private Network on which the selected operation was performed gen_​text_​input
PRIVATE_​NETWORK_​IDENTITY Private Network Identity Apic​Device​Tenant​Private​Network​Identity

Remove APIC VzAny Contract Interface From VRF

Summary
Remove APIC VzAny Contract Interface From VRF.
Description
This task removes an APIC vzAny contract interface from vzAny.
Inputs
Input Description Mappable To Type Mandatory
Contract Interface Select a contract interface to be deleted.​ APIC_​CONTRACT_​INTERFACE_​IDENTITY Y
Do you want to delete the selected Contract Interface from vz​Any? Do you want to delete the selected Contract Interface from vz​Any? Y
Outputs
Output Description Type
APIC_​ACCOUNT APIC Account on which the selected operation was performed Apic​Device​Identity
TENANT_​NAME Tenant Name on which the selected operation was performed gen_​text_​input
TENANT_​IDENTITY APIC Tenant Identity Apic​Device​Tenant​Identity
TENANT_​PRIVATE_​NETWORK Private Network on which the selected operation was performed gen_​text_​input
PRIVATE_​NETWORK_​IDENTITY Private Network Identity Apic​Device​Tenant​Private​Network​Identity
OUTPUT_​CONTRACT_​INTERFACE_​NAME Contract Interface Name gen_​text_​input
OUTPUT_​CONTRACT_​INTERFACE_​IDENTITY Contract Interface Identity APIC_​CONTRACT_​INTERFACE_​IDENTITY

Update APIC vzAny Contract to VRF

Summary
Update APIC vzAny Contract to VRF.
Description
This task update APIC vzAny Contract to VRF.
Inputs
Input Description Mappable To Type Mandatory
Is Provided Contract Choose enable to update a provided contract or disable to update a consumed contract.​ Boolean
vz​Any Contract Select a vz​Any contract.​ APIC VRF vz​Any Contract Identity Y
Qo​S Class Choose level1 or level2 or level3 as priority level of the quality of service (Qo​S).​ APIC vz​Any Qo​S Class Identity Y
Contract Match Type Choose all or atleast​One or atmost​One or none as match criteria for the contract.​ APICvz​Any​Match​Type​Identity Y
Outputs
Output Description Type
APIC_​ACCOUNT APIC Account on which the selected operation was performed Apic​Device​Identity
TENANT_​IDENTITY APIC Tenant Identity Apic​Device​Tenant​Identity
PRIVATE_​NETWORK_​IDENTITY Private Network Identity Apic​Device​Tenant​Private​Network​Identity
OUTPUT_​TENANT_​VRF_​VZANY_​CONTRACT_​IDENTITY APIC VRF vz​Any Contract Identity APIC VRF vz​Any Contract Identity
OUTPUT_​TENANT_​VRF_​VZANY_​CONTRACT_​TYPE_​IDENTITY APIC VRF vz​Any Contract type Identity Boolean

Update vzAny Global Properties

Summary
Update vzAny Global Properties.
Description
This task will allow user to update the current vzAny Global Properties in APIC VRF.
Inputs
Input Description Mappable To Type Mandatory
VRF select a VRF Apic​Device​Tenant​Private​Network​Identity Y
Match Type Choose a match type representing the provider label match criteria APICvz​Any​Global​Properties​Match​Type​Identity
Preferred Group Member check this option to enable Preferred Group Member.​If an EPG is marked as a Preferred Group Member, it is put into an internally created contract group where all members of the group are allowed to communicate with each other without requiring a contract between them The default is Disabled.​ Boolean
Outputs
Output Description Type
APIC_​ACCOUNT APIC Account on which the selected operation was performed Apic​Device​Identity
TENANT_​IDENTITY APIC Tenant Identity Apic​Device​Tenant​Identity
PRIVATE_​NETWORK_​IDENTITY Private Network Identity Apic​Device​Tenant​Private​Network​Identity