End-of-Life (EoL)

Create a VLAN Pool and Domain

Configure the VLAN pool that will be used to allocate VLANs to the firewall when you attach interfaces to the ACI infrastructure for EPGs. The firewall’s VLAN pull should have a static VLAN range.
Configure a dedicated domain for the firewall. A domain for the firewall is required to map the VLANs to the EPGs. Create a physical domain for a physical firewall and create a VMM domain for a VM-Series firewall.
  1. Create a VLAN pool.
    1. Log in to your APIC.
    2. Select
      Fabric
      Access Policies
      Pools
      VLAN
      .
    3. Right-click
      VLAN
      and select
      Create VLAN Pool
      .
    4. Enter a descriptive
      Name
      for your VLAN pool.
    5. Select
      Dynamic Allocation
      for Allocation Mode.
    6. Click the plus (+) button to the right of
      Encap Blocks
      .
    7. Enter your VLAN range in the
      VLAN Range
      field.
    8. Select
      Static Allocation
      form the Allocation Mode drop-down.
    9. Click
      OK
      .
    10. Click
      Submit
      .
  2. (
    Physical firewall only
    ) Create a physical domain.
    1. Select
      Fabric
      Access Policies
      Physical and External Domains
      Physical Domains
      .
    2. Right-click
      Physical Domain
      and select
      Create Physical Domain
      .
    3. Enter a descriptive
      Name
      for your physical domain.
    4. Select the VLAN pool you created in the previous procedure from the VLAN Pool list.
    5. Click
      Submit
      .
  3. (
    VM-Series firewall only
    ) Create a VMM domain.
    1. Select
      Virtual Networking
      VMM Domains
      VMware
      .
    2. Right-click
      VMware
      and select
      Create vCenter Domain
      .
    3. Enter a descriptive
      Name
      for your VMM domain.
    4. Select
      VMware vSphere Distributed Switch
      from the
      Virtual Switch
      drop-down.
    5. Select
      VLAN
      from the
      Encapsulation
      drop-down.
    6. Select your VLAN pool from the
      VLAN Pool
      drop-down.
    7. Click the plus (+) button to the right of
      vCenter Credentials
      .
    8. Enter a descriptive
      Profile Name
      and your vCenter login information.
    9. Click the plus (+) button to the right of
      vCenter
      .
    10. Enter a descriptive
      Name
      .
    11. Select vCenter from the Type drop-down.
    12. Enter your vCenter IP address under
      IP/Hostname
      .
    13. Select the vCenter Credentials profile you just created from the
      Associated Credential
      drop-down.
    14. Click
      Submit
      .

Recommended For You