This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How many Policy Domains? One or many?

How many Policy Domains? One or many?

Robert_Fredette
New Contributor

‎08-21-2017 05:57 PM

I wanted to get opinions on setting up Policy domains for our environment. We have a very simple set of requirements which boil down to this:
  • a set of policies for Edge Switches
  • a different set of policies with very little duplication for Top of Rack switches
  • a completely different set of policies for our Core Switches
What is the feeling? Is it better to have ONE policy domain for all switches and only apply the Rules to ports as needed? Or is it better to have three policy domains in our case?

None of the switches would qualify to be in more than one of the domains if we went the multiple domain route.
0 Kudos
6 REPLIES 6

Jeremy_Gibbs
Contributor
In response to Robert_Fredette

‎08-21-2017 06:20 PM

Hmm... what are you doing at the core that is very special? Spanning tree is a pain in the rear!
0 Kudos

Jeremy_Gibbs
Contributor

‎08-21-2017 06:09 PM

I use the global rule container to make rules and use them between various policy domains. Also, depending on the capabilities of the equipment, it may be easier to have separate domains. We don't use policy at the ToR or Core, just at the edge.
0 Kudos
GTM-P2G8KFN