Create a VLAN pool to allocate VLANs to the
firewall as you attach interfaces to the infrastructure to support
the EPGs in your ACI fabric. You should use a static VLAN range
for the firewall.
Additionally, you must create a physical
domain to map the VLANs to the EPGs. The following procedure creates
a physical domain dedicated to the firewall.
Create a VLAN pool.
Log in to your APIC.
Select
Fabric
Access Policies
Pools
VLAN
.
Right-click
VLAN
and select
Create
VLAN Pool
.
Enter a descriptive
Name
for
your VLAN pool.
Select
Dynamic Allocation
for
Allocation Mode.
Click the plus (+) button to the right of
Encap
Blocks
.
Enter your VLAN range in the
VLAN Range
field.
Select
Static Allocation
form
the Allocation Mode drop-down.
Click
OK
.
Click
Submit
.
Create an external routed domain.
Select
Fabric
Access Policies
Physical and External
Domains
External Domains
.
Right-click
External Routed Domain
and
select
Create Layer 3 Domain
.
Enter a descriptive
Name
for
your physical domain.
Select the VLAN pool you created in the previous procedure
from the VLAN Pool list.
