We will start configuring the ACI fabric by creating some policies and a couple of tenants.

The ACI policy model is all about mapping application requirements to policies. We need tenant A to talk to an SQL server; we create a policy for that. We also need tenant A to talk the storage system, so we create a policy for that.

The APIC looks after the policies. When we make a change to an object within the fabric, it is the job of the APIC to apply this change to the policy model, which then makes the change to the affected endpoint. Such an example would be adding a new device to the fabric. Communication with the new device is prohibited until the policy model is updated to include the new device.

There are different policies, but they can be split into fairly distinct groups: those that govern the ACI fabric as a whole and those that are concerned with tenants.

All the policies are recorded in the MIT, or management information tree.

The MIT

In this chapter, we will start by creating...