1. Home
    2. VM-Series
    3. VM-Series Deployment Guide
    4. Set Up a Firewall in Cisco ACI
    5. Integrate the Firewall with Cisco ACI in Network Policy Mode
    6. Deploy the Firewall to Secure East-West Traffic in Network Policy Mode
    7. Establish the Connection Between the Firewall and ACI Fabric

    Establish the Connection Between the Firewall and ACI Fabric

    Attach your firewall to the leaf switch through a VPC connection using the Ethernet interface (or aggregate Ethernet group) you configured on your firewall earlier in this procedure. Connect the interface or interfaces to the same ports on the leaf switches.
    1. Select
      Fabric
      Access Policies
      Quick Start
      .
    2. Click
      Configure an interface, PC, and VPC
      .
    3. Click the green and white plus (+).
    4. Select the leaf switch or switches to which you firewall is connected from the
      Switches
       drop-down.
    5. Click the green and white plus (+).
    6. Select VPC as the
      Interface Type
      .
    7. In the
      Interfaces
       field, enter the number of the interface your firewall uses to connect to the leaf switch.
    8. Enter a descriptive name into the
      Interface Selector Name
       field.
    9. Select
      LLDP-Enabled
       from the
      LLDP Policy
       drop-down.
    10. Select
      LACP Active
       from the
      Port Channel Policy
       drop-down.
    11. Select
      Bare Metal
       for a physical firewall or
      ESX Hosts
       for the VM-Series from the
      Attached Device Type
       drop-down.
    12. Select
      Choose One
       for
      Domain
      .
    13. Select the physical domain or VMM domain you created previously in this procedure from the
      Domain
       drop-down.
    14. Click
      Save
      .
    15. Click
      Save
       and then
      Submit
      .
    16. Repeat this procedure for the second firewall in your HA pair.

    Recommended For You

    Recommended Videos

    Recommended videos not found.