Skip to content

tl10k

Things I Keep Forgetting

tl10k

Home
Home
- About
Index
Index
- Highlighted Posts
- All Posts
Categories
Categories
- Docker
  Docker
  - Things I Keep Forgetting
- Documentation
  Documentation
- Git
  Git
  - Things I Keep Forgetting
- Infrastructure
  Infrastructure
- Kubernetes
  Kubernetes
  - Kubernetes and DNS
  - Kubernetes Ingress and Static Assets
  - Kubernetes Networking - Intro
    Kubernetes Networking - Intro
    
    Part 1
    
    Part 2
    
    Part 3
    
    Part 4
  - Rancher
- Linux
  Linux
  - Resources
  - Things I Keep Forgetting
- Machine Learning
  Machine Learning
  - Resources
- Networking
  Networking
  - ACI
    ACI
    
    Firewall Configurations
    Firewall Configurations
    
    Intra-ESG Firewall Inspection
    
    One-arm PBR
    
    PBR with service BDs
    
    PBR without service BDs
    
    VRF Sandwich
    
    Firewall Migration
    
    FMC Endpoint Update App
    
    L3Out
    
    Multicast
    
    Simplifying ACI
    
    Stateful Contracts
    
    VRF Route Leaking
  - General
    General
    
    ContainerLab
    
    Multicast
    Multicast
    
    Intro to Multicast
    
    Switching Scenarios
    
    TCP and the Python Scapy Library
  - Nexus Dashboard
    Nexus Dashboard
    
    Backing up and restoring Nexus Dashboard
    
    NDFC
    NDFC
    
    What features help me manage a data centre fabric?
    
    Upgrading Nexus Dashboard
  - Resources
- Other
  Other
- Python
  Python
  - How does the Python Interpreter Interpret my Python
  - Useful Scripts
- Security
  Security
  - Firewalls
    Firewalls
    
    Stateful Firewalls
    
    Things I Keep Forgetting Things I Keep Forgetting
    Table of contents
    
    Traffic entering/exiting the same interface
    
    VLAN Stitching and VRF Sandwiches
  - Proxies
  - Resources
- SRE
  SRE
  - Resources
- Storage
  Storage
  - Resources
- Terraform
  Terraform
  - Azure Devops with Terraform and Cisco ACI
    Azure Devops with Terraform and Cisco ACI
    
    Part 1
    
    Part 2
    
    Part 3
  - Cisco Nexus as Code Architecture
  - Miscellaneous Terraform Topics
  - Introduction to Terraform for Cisco ACI
    Introduction to Terraform for Cisco ACI
    
    Part 1
    
    Part 2
    
    Part 3
  - Terraform design considerations for Cisco ACI
    Terraform design considerations for Cisco ACI
    
    Part 1
    
    Part 2
    
    Part 3
    
    Part 4
- Virtualization
  Virtualization
  - Resources
  - VMware
    VMware
    
    Miscellaneous
Sites
Sites
- TL10k labs

Things I Keep Forgetting¶

Estimated time to read: 1 minute

Last Updated: May, 2024

Traffic entering/exiting the same interface¶

same-security-traffic permit intra-interface

The same-security-traffic intra-interface command lets traffic enter and exit the same interface, which is normally not allowed. I've used this in the following example where I have an ACI fabric with policy-based redirect to a firewall in one arm mode.

https://www.cisco.com/en/US/docs/security/asa/asa81/command/reference/s1.html

https://www.ciscolive.com/c/dam/r/ciscolive/apjc/docs/2018/pdf/BRKACI-2016.pdf

Comments