UCS
- B2G: better together tool
- implements ACI policy in UCS
Contiv
- manage ACI from Docker, Kubernetes: tenants, BD, contracts, EPG
- static VLAN binding
- EPG ≡ VLAN/VXLAN
Kubernetes
- pod = container group with shard namespace
- pod receives IP, unit for policy enforcement
- no NAT between pods, K8s notes
- ACI does not manage K8s, K8s registers settings in ACI
- default EPG:
- kube-nodes
- kube-system: pods in kube-system namespace
- kube-default: pods in other namespaces
- contracts for EPG:
- provider: healthcheck (kube-system), ARP (kube-system)
- DNS (kube-system), ARP (kube-system), L3Out
TrustSec
- ISE receives EPGs and creates SGTs based on /32
- ISE creates L3Out EPGs based on SGT (IP mapping, /32)
Cobra
- ACI Python SDK
Arya
- transforms JSON (ACI object) with parameters to Python code that uses Cobra SDK
REST API
- paging: 100k entries of same class; query parameter – page-size
- /api/mo/uni – object request
- /api/class – class request