Extreme Fabric Automation Administration Guide Version 2.7.0.
> Policy Services Provisioning
Published April 2022
Search this document
Print this page
Email this page
View PDF
Previous
Next
Preface
Text Conventions
Documentation and Training
Help and Support
Send Feedback
About this Document
What's New in this Document
Extreme Fabric Automation
Introduction to Extreme Fabric Automation
EFA Microservices
REST API Documentation for EFA
EFA System Management
Verify the Running System and Services
Log in to EFA
EFA Certificate Management
Northbound Interface Certificates
Device Certificates
HTTPS Certificates
Syslog CA
Certificate Expiry and Renewal
Certificate Troubleshooting
Monitoring EFA Status
Verifying EFA System Health
EFA System Backup and Restoration
Back up and Restore the EFA System
Change the Host Name or IP Address
Display EFA Running Configurations
Audit Trail Logging
Transfer of Audit Trail Data
Logging and Log Files
Data Consistency
Periodic Device Discovery
Persistent Configuration
Drift and Reconcile
Network Elements
Idempotent Operations
Rollback Scenarios for Data Consistency
EFA High Availability Failover Scenarios
Multiple Management IP Networks
Add and Delete Management Routes
Configuration Supporting Multiple Management IP Networks
Add and Delete Management Subinterfaces
Configure Static IP Addresses for Management Subinterfaces
Change the Default Gateway of a TPVM
Fabric Infrastructure Provisioning
Fabric Service Overview
IP Fabric and Clos Orchestration Overview
SLX Device Prerequisites for Fabric Service
Clos Overview
Configure a 3-Stage Clos Fabric
Configure a 5-Stage Clos Fabric
Overview of Day-0 Operations for a Small Data Center Fabric
Supported Small Data Center Topologies
Configure a Small Data Center Fabric
Dynamic ICL in small data center
IP Multicast Fabric Provisioning
IP Multicast Fabric Overview
Bidirectional Forwarding Detection
Fabric Settings to Update BGP MD5 Password, BGP Dynamic Peer Listen Limit, and Single Rack Deployment
Configure an IP Multicast Fabric
Device Configuration
Configure Drift and Reconcile on Multicast Fabric
View Fabric Details
Edit Fabric Settings
Fabric Event Handling
Northbound IPv6 support
Tenant Services Provisioning
Tenant Services Provisioning Overview
Provisioning a Tenant
Clos Fabric with Non-auto VNI Maps
Clos Fabric with Auto VNI Map
Layer 3 Network Services
Configure Description on Port Channel
Configure Minimum Link Count on Port Channel
Configure Backup Routing on Tenant VRF
Route-Distinguisher (RD) allocation independent of Route-Target (RT)
Configure Static VRF Route
Configure BFD on Static VRF Route
Configure Local ASN on Tenant VRF
Update Local ASN on VRF
Backup Routing
Configure Local ASN during VRF Create
Configure Local ASN During VRF Update
Deconfigure Local ASN during VRF Update
Enable Graceful Restart on Tenant VRF
Configure Resilient Hashing on Tenant VRF
Enable Graceful Restart on Tenant VRF
Configure MaxPaths on Tenant VRF
Configure Redistribute Attribute on Tenant VRF
Configure Advertise Network and Static-Network on Tenant VRF
Configure Aggregate Address on Tenant VRF
EPG: Network Property Description
Update anycast-ip on an Existing Tenant Network
Configure Multiple Anycast IP
Configure IPv6 ND on a Tenant Network
Configure the BFD Session Type for an Endpoint Group
Configure CEP Cluster Tracking for Endpoint Groups
Enable Cluster Tracking on CEP Interfaces
Suppress Address Resolution Protocol and Neighbor Discovery on VLAN or Bridge Domain
Configure Local IP for Endpoint Group
EPG: Network Property: IP MTU
BGP as a Service
BGP Peer Group
BGP Static Peer
BGP Dynamic Peer
Configure Listen Limit on BGP Dynamic Peer
Getting the operational state of the BGP peers
Configure route map attribute
Configure remove-private-as on BGP Peer
Configure remove-private-as on BGP Peer Group
Configure default-originate to advertise default route on BGP Peer
Configure Backup Routing Neighbors on BGP Peer
IPv6 Support
Software BFD Session Support on CEP
Exclusion of VLANs and Bridge from Cluster Instance
Sharing Resources Across Tenants using Shared Tenant
Shared VRF and Router
Configure Shared Tenant, Shared VRF, and Private EPG using Shared VRF
Configure L3-Hand-Off EPG and BGP Peer under Ownership of Shared Tenant
Shared VRF and Router Usecase with Examples
Sharing Multiple VRFs with the same RT (route-target)
Distributed and Centralized Routing
Prepare Clos Fabric for Centralized Routing
Prepare Small Data Center Fabric for Centralized Routing
Enable Centralized Routing on Tenant VRF
Configure physical routers for centralized routing on Tenant VRF
Configure anycast-ip on Tenant Endpoint Group
Configure local-ip on Tenant Endpoint Group
Configure static route on tenant VRF
Configure static route BFD on Tenant VRF
Configure peer-group on Tenant BGP
Configure static peer on Tenant BGP
Configure Dynamic peer on Tenant BGP
Centralized Routing on Single Rack Small Data Center Leaf Pair (not Border Leaf Pair)
Create a Tenant VRF for Single Rack Small Data Center Leaf Pair Deployment
Configure a Single-Rack Leaf in Day 0 and Day 1 Provisioning
Route-Distinguisher (RD) allocation independent of Route-Target (RT)
BFD timers for router-bgp BFD and static-route BFD sessions
Administered Partial Success
Administratively Manage a Device State
APS Behavior of Tenant Configuration
Existing behavior in EFA 2.3.0
APS: Pre-provisioning Support by Modifying the Target Device List to Include the MCT Neighbor
APS: Deletion Support for Pre-provisioned Configurations
In-flight Transaction Recovery
Traffic Mirroring
In-band Traffic Mirroring
Out-of-band Traffic Mirroring
Support Matrix
Configure Port-Based Mirroring in a Multi-Tenant Architecture
Configure Flow-Based Mirroring in a Multi-Tenant Architecture
Access Control List and Data Consistency Support
Configure VLAN-Based Mirroring in a Multi-Tenant Architecture
Configure ICL Port Mirroring in a Multi-Tenant Architecture
Scalability
Policy Services Provisioning
Policy Services Provisioning Overview
Prefix List
Configure IP Prefix List on Devices
Drift and Reconcile (DRC) and Idempotency for IP prefix list configuration
Route Map
Configure Route Map on devices
Drift and Reconcile (DRC) and Idempotency for route map configuration
Event handling for IP prefix list and route map
EFA Device Management
Device Image Management
Hitless Firmware Upgrade
Upgrading the Super-Spine Firmware in Clos
Upgrading the Spine Firmware in Clos
Upgrading the Firmware of an MCT Leaf Pair with Dual-Homed Servers in Clos
Upgrading the Firmware of a Three-Rack Centralized MCT Pair in Small Data Center
Upgrading the Firmware of a Three-Rack Ring MCT Pair in Small Data Center
Firmware Download
Firmware Upgrade with Minimal Traffic Loss
Firmware Download Restart on HA Failover or Inventory Service Restart
Firmware Download Implicit Fullinstall Support
EFA Command Blocking During Firmware Download
Failures During Group-based Firmware Download Execution
Group-based Firmware Download Restore
Fabric-wide Firmware Download
Group-based Firmware Download Preparation
Fabric-based Firmware Download Preparation
Group-based Firmware Download Execution
Roll Back Device Firmware
Traffic Loss Scenarios
Device Health Management
Monitor Device Health
Device Configuration Backup and Replay
Configure Backup and Replay
Return Material Authorization
Replace a Faulty Device
SLX Device Configuration
Compare a Device
Enable Maintenance Mode on SLX Devices
Configure Physical Port Speed
Configure Breakout Ports
Configure MTU at the Interface or System Level
Change the Admin Status of an Interface
Configure NTP at Device and Fabric Levels
Configure RME on Interface
Device Configuration Synchronization
SLX Configuration Backup
CLI Commands for Backups
EFA Event Management
RASlog Service
RASlog Operations
Notification Service
EFA as SNMP Proxy
Drift and Reconcile (DRC) and Idempotency for SNMP
Known Limitations
Known Limitations in EFA
Policy Services Provisioning
