efa tenant epg update
Updates an existing End Point Group
(EPG).
Syntax
efa tenant epg update
[--name
|--tenant
|--operation
[
port-group-add |
port-group-delete | ctag-range-add | ctag-range-delete | vrf-add, vrf-delete
| local-ip-add | local-ip-delete
]
|--port
|--po
|--switchport mode
[
access | trunk |
trunk-no-default-native
]
|--switchport-native-vlan-tagging
|--switchport-native-vlan
|--ctag range
|--vrf
|--l3 vni
|--l2 vni
|--anycast-ip
|--anycast-ipv6
|--bridge-domain
|--local-ip
|--local-ipv6
|
--help]
Parameters
- --name
- Specifies the name of the EPG.
- --tenant
- Specifies the name of the tenant.
- --operation
- Defines the operation to be performed. Valid
values are port-group-add, port-group-delete, ctag-range-add,
ctag-range-delete, vrf-add, vrf-delete, local-ip-add, and
local-ip-delete.
- --port
- Specifies the port or ports on the device
where the tenant network is configured. For example,
SW1_IP[0/1],SW2_IP[0/5].
- --po
- Lists port channels where the tenant network
is configured. Example; po1 or po1,po2.
- --switchport-mode
- Configures Switch port mode on the
interfaces. Valid values are access | trunk | trunk-no-default-native.
Default value is set to trunk.
- --switchport-native-vlan-tagging
- Enables the native vlan characteristics on
the ports of this endpoint group. Valid only if mode is set to trunk.
- --switchport-native-vlan
- Configures native VLAN on the interfaces.
Valid values are 2 through 4090.
- --ctag-range
- Specifies the customer VLAN range in comma
and hyphen separated format. Example: 2-20,30,40,50-55
- --vrf
- Specifies the VRF to which the networks are
attached. Example: VRF-GREEN
- --l3
vni
- Specifies the L3 VNI to be used for this
VRF.
- --l2
vni
- Specifies the L2 VNI to be used for this
network in the format ctag:l2-vni.
- --anycast-ip
- Specifies the IPv4 anycast address in the
format ctag:anycast-ip.
- --anycast-ipv6
- Specifies the IPv6 anycast address in the
format ctag:anycast-ipv6.
- --bridge-domain
- Specifies the bridge domain name in the
format ctag:bridge-domain.
- --local-ip
- Specifies the IPv4 local address in the
format ctag,device-ip:local-ip.
- --local-ipv6
- Specifies the IPv6 local address in the
format ctag,device-ip:local-ipv6.
- --help
- Displays help for update.
Usage Guidelines
An empty EPG is an EPG without any network-policy, network-property, or
port-property.
An EPG can be created with a port-property and without a port-group. But an EPG
cannot be created with a port-group and without a port-property.
ARP suppression is enabled for all the possible broadcast domains (VLAN/BD) on the device.
CEP is handled by replicating all the tenant configuration on the MCT neighbor except
for the endpoint configuration, since the endpoint doesn‘t exist on the MCT
neighbor.
The EPG update for a bridge domain-based EPG is similar to an update to a VLAN-based
EPG. During a port-group add/delete operation, the logical interface configurations
will be created/deleted for the existing ctags, and the corresponding
bridge-domains.
During a ctag-range-add or delete operation, the logical interface and bridge-domain
configurations are updated on the EPG.
During vrf-add or delete operation, the corresponding L3 configurations will be added
or deleted to the EPG.
Event handling sets the corresponding tenant networks to the
cfg-refreshed state. However, there is no way to re-push the
refreshed configuration onto the devices.
Examples
The following example is an EPG update for a VLAN-based L3 EPG : port-group-delete.
efa tenant epg update --name epgb31 --tenant t4 --operation port-group-add --port 10.20.49.119[0/15]
EndpointGroup updated successfully.
# efa tenant epg update --operation port-group-delete --name epgL3 --tenant tenant1 --po po1
EndpointGroup updated successfully.
