Introduction

Cisco ACI does things a bit differently to traditional networking. I find myself constantly duck hunting to do simple things so I am documenting them here so they are easier for me to fine.

Get VRF Names

Get a list of VRFs with the show vrf command from a leaf node.

cmd

show vrf

VRF-Name                           VRF-ID State    Reason
black-hole                              3 Up       --
common:SHARED_MSTP_INT_VRF             89 Up       --
common:SHARED_MSTP_VRF                148 Up       --
common:SPAN_ERSPAN_VRF                 12 Up       --
management                              2 Up       --
TNT-ALPHA:ALPHA-0001                   68 Up       --
...
    

How to Ping

To ping a host use the iping command from a leaf node.

cmd

iping -h

usage: iping     [ -d    set the SO_DEBUG option]
                 [ -D    enable debug information ]
                 [ -F    enable do not fragment bit in IP header ]
                 [ -L    receive packets on supplied interface ]
                 [ -n    enable printing host IP address than resolved name ]
                 [ -q    quiet output ]
                 [ -r    disable routing of the packets, send only to directly connected hosts ]
                 [ -v    output in verbose format ]
                 [ -V          name of the VRF through which destination is reachable ]
                 [ -c             no of packets to send ]
                 [ -i                      no of seconds to wait before sending next packet ]
                 [ -p           packet payload pattern ]
                 [ -s        size of packets to send ]
                 [ -t           wait for seconds to receive reply ]
                 [ -S       send packet with given source-ip or IP of given interface and
                                                 send packet out of that interface ]
                   destination host-name or ip address

iping -V TNT-ALPHA:ALPHA-0001 10.47.62.32
    

Note

VRFs are a contatination of the tenant and VRF names joined with a colon(:).

Find and Endpoint IP/MAC mapping

To find an endpoints IP/MAC mapping for a VLAN in a particular EPG you need to run some commands from a leaf node that the EPG is configured on.

Note

It is highly likely that the VLAN local to the leaf is not the same VLAN that is configured in the GUI (The encapsulated VLAN).

Use the show vlan extended and egrep commands to find the translated VLAN that is used local to the leaf.

cmd

show vlan extended | egrep 'Encap|vlan-1731'

VLAN Name                             Encap            Ports
106  TNT-ALPHA:ALPHA-0001_NETWORK_CE  vlan-1731        Eth1/41, Eth1/48, Po1,
...
    

VLAN 106 is the translated VLAN for 1731 local to this leaf node.

Now use the show endpoints command to show the IP/MAC mapping.

cmd

show endpoint vlan 106

Legend:
s - arp              H - vtep             V - vpc-attached     p - peer-aged
R - peer-attached-rl B - bounce           S - static           M - span
D - bounce-to-proxy  O - peer-attached    a - local-aged       L - local
+-----------------------------------+---------------+-----------------+--------------+-------------+
VLAN/                           Encap           MAC Address       MAC Info/       Interface
Domain                          VLAN            IP Address        IP Info
+-----------------------------------+---------------+-----------------+--------------+-------------+
106                                       vlan-1731    aaaa.bbbb.cccc LV                        po1
TNT-ALPHA:ALPHA-0001                      vlan-1731      10.10.10.10  LV                        po1
...
    

cisco aci networking