You are configuring an ACI Fabric with Layer 3 out connectivity. You want to allow traffic to transverse from one external EPG to another external EPG, or alternatively to another inter EPG.
Which option must be configured to permit the packets between these two EPGs, assuming the subnet is already being advertised correctly?
A . Aggregate Export
B . Export Route Control
C . Import Route Control
D . Aggregate Import
E . Security import Subnet
Answer: E
Explanation:
Source: https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/2-x/L3_config/b_Cisco_APIC_Layer_3_Configuration_Guide/b_Cisco_APIC_Layer_3_Configuration_Guide_chapter_010100.pdf
Text from Source:
External Subnets for the External EPG (also called Security Import Subnet)―This option does not control the movement of routing information into or out of the fabric. If you want traffic to flow from one external EPG to another external EPG or to an internal EPG, the subnet must be marked with this control. If you do not mark the subnet with this control, then routes learned from one EPG are advertised to the other external EPG, but packets are dropped in the fabric
Leave a Reply