CISCO ACI Virtual Machine Networking User Guide

Cov ntsiab lus zais

1 CISCO ACI Virtual Machine Networking

2 Cov ntaub ntawv khoom

3 Cov lus qhia siv khoom

4 Kev them nyiaj yug Network

5 Daim ntawv qhia Cisco ACI thiab VMware Tsim

6 VMM Domain EPG Association

7 Hais txog Trunk Port Group

8 Attachable Entity Profile

9 Kev xa tawm tam sim

10 NetFlow nrog Virtual Machine Networking

11 Cov ntaub ntawv / Cov ntaub ntawv

11.1 Cov ntaub ntawv

CISCO ACI Virtual Machine Networking

Cov ntaub ntawv khoom

Specifications:
- Cov khoom txhawb nqa thiab cov neeg muag khoom: Cisco ACI txhawb nqa virtual machine managers (VMMs) los ntawm ntau yam khoom thiab cov neeg muag khoom. Xa mus rau Cisco ACI Virtualization Compatibility Matrix rau cov npe tam sim no ntawm cov khoom lag luam sib cuam tshuam.

Cov lus qhia siv khoom

Mapping Cisco ACI thiab VMware Tsim: Cisco Application Centric Infrastructure (ACI) thiab VMware siv cov ntsiab lus sib txawv los piav qhia tib yam tsim. Cov lus hauv qab no muab ib daim ntawv qhia txog Cisco ACI thiab VMware terminology ntsig txog VMware vSphere Distributed Switch (VDS).

Cisco ACI Cov ntsiab lus	Cov ntsiab lus ntawm VMware
Endpoint pab pawg (EPG)	Chaw nres nkoj pab pawg, portgroup
LACP Active	LACP Passive
MAC Pinning	MAC Pinning-Physical-NIC-Load
Static Channel – Hom ON	Virtual Machine Manager (VMM) domain VDS
VM controller	vCenter (Datacenter)

Virtual Machine Manager Domain Main Cheebtsam:
- ACI fabric virtual machine manager (VMM) domains tso cai rau cov thawj coj los teeb tsa txoj cai sib txuas rau cov tswj hwm lub tshuab virtual. Cov ntsiab lus tseem ceeb ntawm ACI VMM txoj cai tswj hwm suav nrog:
- Virtual Machine Manager (VMM) sau npe
- VM controller
- vCenter (Datacenter)
- Nco tseg: Ib tus VMM ib leeg tuaj yeem muaj ntau qhov xwm txheej ntawm VM cov tswj hwm, tab sis lawv yuav tsum yog los ntawm tib tus neeg muag khoom (xws li VMware lossis Microsoft).
Virtual Machine Manager Domains:
- APIC VMM domain profile yog ib txoj cai uas txhais lub VMM sau. Txoj cai tswj hwm VMM yog tsim nyob rau hauv APIC thiab thawb mus rau hauv nplooj ntawv hloov. VMM domains muab cov hauv qab no:
VMM Domain VLAN Pool Association
- VLAN pas dej ua ke sawv cev thaiv cov tsheb khiav VLAN tus cim. Lub pas dej VLAN yog ib qho kev sib koom thiab tuaj yeem siv tau los ntawm ntau qhov chaw xws li VMM domains thiab Txheej 4 rau Txheej 7 cov kev pabcuam.
- Lub VMM sau tuaj yeem cuam tshuam nrog tsuas yog ib lub pas dej VLAN dynamic.
- Los ntawm lub neej ntawd, VLAN tus cim yog dynamically muab rau EPGs txuam nrog VMM domains los ntawm Cisco APIC.
- Txawm li cas los xij, cov thawj coj tuaj yeem xa tus VLAN tus cim rau qhov kawg pab pawg (EPG) hloov.
- Hauv cov xwm txheej zoo li no, cov cim qhia siv yuav tsum raug xaiv los ntawm cov blocks encapsulation hauv VLAN pas dej ua ke nrog VMM domain, thiab lawv hom kev faib yuav tsum tau hloov mus rau qhov zoo li qub.
- Cisco APIC muab VMM domain VLAN ntawm nplooj ntawv chaw nres nkoj raws li EPG cov xwm txheej, xws li kev ruaj khov ntawm nplooj ntawv chaw nres nkoj lossis raws li VM cov xwm txheej los ntawm cov tswj xws li VMware vCenter lossis Microsoft SCVMM.
- Nco tseg: Hauv cov pas dej VLAN dynamic, yog tias VLAN raug cuam tshuam los ntawm EPG, nws yuav rov koom nrog EPG tom qab tsib feeb.
- Lub koom haum Dynamic VLAN tsis yog ib feem ntawm kev teeb tsa rollback, txhais tau tias yog EPG lossis tus neeg xauj tsev tau pib tshem tawm thiab tom qab ntawd rov qab los ntawm kev thaub qab, VLAN tshiab yuav raug faib los ntawm cov pas dej VLAN dynamic.

FAQ:
- Q: Cov khoom twg thiab cov neeg muag khoom tau txais kev txhawb nqa los ntawm Cisco ACI?
- A: Cisco ACI txhawb nqa virtual machine managers (VMMs) los ntawm ntau yam khoom thiab cov neeg muag khoom. Thov xa mus rau Cisco ACI Virtualization Compatibility Matrix rau cov npe tam sim no ntawm cov khoom lag luam sib cuam tshuam.
- Q: Kuv puas tuaj yeem muab tus cim VLAN rau EPG es tsis txhob muab nws tso tawm?
- A: Yog lawm, koj tuaj yeem txheeb xyuas tus lej VLAN rau pawg kawg (EPG) cuam tshuam nrog VMM sau. Txawm li cas los xij, tus lej cim yuav tsum raug xaiv los ntawm cov blocks encapsulation hauv VLAN pas dej ua ke nrog VMM sau, thiab hom faib yuav tsum tau hloov mus rau qhov zoo li qub.
- Q: Yuav ua li cas yog hais tias ib tug VLAN yog disassociated los ntawm ib tug EPG nyob rau hauv ib tug dynamic VLAN pas dej ua ke?
- A: Yog tias VLAN raug rho tawm los ntawm EPG hauv lub pas dej VLAN dynamic, nws yuav rov koom nrog EPG tom qab tsib feeb.
- Q: Puas yog dynamic VLAN koom nrog ib feem ntawm kev teeb tsa rollback?
- A: Tsis yog, dynamic VLAN koom haum tsis yog ib feem ntawm kev teeb tsa rollback. Yog tias EPG lossis tus neeg xauj tsev tau pib tshem tawm thiab rov qab los ntawm kev thaub qab, VLAN tshiab yuav raug faib los ntawm cov pas dej VLAN dynamic.

Tshooj lus no muaj cov ntu hauv qab no:

• Cisco ACI VM Networking Support for Virtual Machine Managers, nyob rau nplooj 1
• Mapping Cisco ACI thiab VMware Constructs, nyob rau nplooj 2
• Virtual Machine Manager Domain Main Components, nyob rau nplooj 3
• Virtual Machine Manager Domains, ntawm nplooj 4
• VMM Domain VLAN Pool Association, nyob rau nplooj 4
• VMM Domain EPG Association, nyob rau nplooj 5
• Hais txog Trunk Port Group, ntawm nplooj 7
• Attachable Entity Profile,,paj 8
• EPG Txoj Cai daws teeb meem thiab xa mus sai sai, ntawm nplooj 9
• Cov Lus Qhia rau Kev Tshem Tawm VMM Domains, ntawm nplooj 10
• NetFlow nrog Virtual Machine Networking, ntawm nplooj 11
• Kev daws teeb meem VMM Connectivity, nyob rau nplooj 13

Kev them nyiaj yug Network

Cisco ACI VM Networking Support rau Virtual Machine Managers

Cov txiaj ntsig ntawm ACI VM Networking

Cisco Application Centric Infrastructure (ACI) virtual tshuab (VM) kev sib txuas lus txhawb nqa hypervisors los ntawm ntau tus neeg muag khoom.
Nws muab cov hypervisor programmable thiab automated nkag mus rau high-performance scalable virtualized data center infrastructure.
Programmability thiab automation yog cov yam ntxwv tseem ceeb ntawm scalable data center virtualization infrastructure.
Cisco ACI qhib REST API ua rau lub tshuab virtual kev koom ua ke nrog thiab orchestration ntawm txoj cai qauv raws li Cisco ACI ntaub.
Cisco ACI VM networking ua rau muaj kev tswj hwm cov cai nyob rau hauv ob qho tib si virtual thiab lub cev ua haujlwm uas tau tswj hwm los ntawm hypervisors los ntawm ntau tus neeg muag khoom.
Attachable entity profiles tau yooj yim ua kom VM txav tau yooj yim thiab tso chaw ua haujlwm nyob qhov twg hauv Cisco ACI ntaub.
Cisco Application Policy Infrastructure Controller (APIC) muab kev daws teeb meem hauv nruab nrab, daim ntawv thov kev noj qab haus huv, thiab kev saib xyuas virtualization.
Cisco ACI multi-hypervisor VM automation txo lossis tshem tawm phau ntawv teeb tsa thiab phau ntawv yuam kev. Qhov no ua rau cov chaw zov me nyuam virtualized los txhawb cov neeg coob ntawm VMs ntseeg tau thiab raug nqi zoo.

Cov khoom txhawb nqa thiab cov neeg muag khoom

Cisco ACI txhawb nqa virtual tshuab tswj hwm (VMMs) los ntawm cov khoom lag luam thiab cov neeg muag khoom hauv qab no:
Cisco Unified Computing System Manager (UCSM)
Kev koom ua ke ntawm Cisco UCSM tau txais kev txhawb nqa pib hauv Cisco Cisco APIC Tso Tawm 4.1(1). Yog xav paub ntxiv, saib tshooj “Cisco ACI nrog Cisco UCSM Kev Koom Tes hauv Cisco ACI Virtualization Guide, Tso Tawm 4.1(1).

Cisco Application Centric Infrastructure (ACI) Virtual Pod (iPod)

Cisco ACI vPod yog nyob rau hauv feem ntau muaj pib hauv Cisco APIC Tso Tawm 4.0(2). Yog xav paub ntxiv, saib cov ntaub ntawv Cisco ACI vPod ntawm Cisco.com.

Huab Foundry

Huab Foundry kev koom ua ke nrog Cisco ACI tau txais kev txhawb nqa pib nrog Cisco APIC Tso Tawm 3.1(2). Yog xav paub ntaub ntawv, saib cov kev paub hauv paus tsab xov xwm, Cisco ACI thiab Huab Found Integration ntawm Cisco.com.

Kubernetes

Yog xav paub ntxiv, saib cov lus qhia hauv paus ntsiab lus, Cisco ACI thiab Kubernetes Integration on Cisco.com.

Microsoft System Center Virtual Machine Manager (SCVMM)

Yog xav paub ntxiv, saib tshooj “Cisco ACI nrog Microsoft SCVMM” thiab “Cisco ACI nrog Microsoft Windows Azure Pack” hauv Cisco ACI Virtualization Guide on Cisco.com.

OpenShift

Yog xav paub ntxiv, saib lub OpenShift cov ntaub ntawv. ntawm Cisco.com.

OpenStack

Yog xav paub ntxiv, saib lub OpenStack cov ntaub ntawv on Cisco.com.

Red Hat Virtualization (RHV)

Yog xav paub ntxiv, saib cov lus qhia hauv paus ntsiab lus, Cisco ACI thiab Red Hat Integration. ntawm Cisco.com.

VMware Virtual Distributed Hloov (VDS)

Yog xav paub ntxiv, saib tshooj “Cisco “ACI with VMware VDS Integration” nyob rau hauv Cisco ACI Virtualization Guide.
Saib cov Cisco ACI Virtualization Compatibility Matrix. rau cov npe tam sim no tshaj plaws ntawm cov khoom siv sib cuam tshuam tau lees paub.

Daim ntawv qhia Cisco ACI thiab VMware Tsim

Cisco Application Centric Infrastructure (ACI) thiab VMware siv cov ntsiab lus sib txawv los piav qhia tib yam tsim. Tshooj lus no muab cov lus qhia rau Cisco ACI thiab VMware cov lus siv; cov ntaub ntawv muaj feem xyuam rau VMware vSphere Distributed Switch (VDS).

Cisco ACI Cov ntsiab lus	VMware Cov ntsiab lus
Endpoint pab pawg (EPG)	Chaw nres nkoj pab pawg, portgroup

Cisco ACI Cov ntsiab lus	VMware Cov ntsiab lus
LACP Active	• Txoj kev raws IP hash (downlink chaw nres nkoj pab pawg) • LACP Enabled/Active (uplink port group)
LACP Passive	• Txoj kev raws IP hash (downlink chaw nres nkoj pab pawg) • LACP Enabled/Active (uplink port group)
MAC Pinning	• Txoj kev raws li qhov chaw nres nkoj virtual • LACP Disabled
MAC Pinning-Physical-NIC-Load	• Txoj kev raws li lub cev NIC load • LACP Disabled
Static Channel – Hom ON	• Txoj kev raws IP Hash (cov pab pawg downlink chaw nres nkoj) • LACP Disabled
Virtual Machine Manager (VMM) sau npe	VDS
VM controller	vCenter (Datacenter)

Virtual Machine Manager Domain Main Cheebtsam

ACI fabric virtual machine manager (VMM) domains pab tus thawj tswj hwm los teeb tsa txoj cai sib txuas rau cov tswj hwm lub tshuab virtual. Cov khoom tseem ceeb ntawm ACI VMM txoj cai tswj hwm suav nrog cov hauv qab no:

Virtual Machine Manager Domain Profile—Pab pawg VM tswj nrog cov kev cai sib txuas lus zoo sib xws. Rau example, VM controllers tuaj yeem sib koom VLAN pas dej thiab daim ntawv thov kawg pab pawg (EPGs). APIC sib txuas lus nrog tus maub los tshaj tawm kev teeb tsa network xws li pawg chaw nres nkoj uas tom qab ntawd siv rau cov haujlwm virtual. VMM domain profile suav nrog cov khoom tseem ceeb hauv qab no:
Daim ntawv pov thawj—Koom nrog VM tus neeg siv daim ntawv pov thawj siv tau nrog APIC VMM sau.
Tswj-Qhia meej txog kev txuas mus rau VM maub los uas yog ib feem ntawm kev tswj hwm txoj cai.

Rau example, tus maub los qhia txog kev sib txuas rau VMware vCenter uas yog ib feem ntawm VMM sau.

Nco tseg

Ib tus VMM nkaus xwb tuaj yeem muaj ntau yam ntawm VM tswj, tab sis lawv yuav tsum yog los ntawm tib tus neeg muag khoom (rau example, los ntawm VMware lossis los ntawm Microsoft.

EPG Association—Cov pab pawg Endpoint tswj kev sib txuas thiab kev pom ntawm cov ntsiab lus kawg nyob rau hauv txoj cai ntawm VMM txoj cai. VMM sau EPGs coj raws li hauv qab no: APIC thawb cov EPGs no ua pab pawg chaw nres nkoj rau hauv VM maub los. Ib qho EPG tuaj yeem nthuav dav ntau VMM thawj, thiab VMM tus sau tuaj yeem muaj ntau EPGs.
Attachable Entity Profile Koom haum—Koom nrog VMM sau nrog lub cev network infrastructure. Ib tug attachable entity profile (AEP) yog tus qauv kev sib txuas hauv network uas tso cai rau siv VM cov cai tswj hwm ntawm ntau cov nplooj hloov chaw nres nkoj. Ib qho AEP qhia txog cov keyboards thiab cov chaw nres nkoj twg muaj, thiab lawv tau teeb tsa li cas.
VLANPool Association—A VLAN pas dej ua ke qhia cov VLAN IDs los yog ntau yam siv rau VLAN encapsulation uas VMM domain siv.

Virtual Machine Manager Domains

APIC VMM domain profile yog ib txoj cai uas txhais lub VMM sau. Txoj cai tswj hwm VMM yog tsim nyob rau hauv APIC thiab thawb mus rau hauv nplooj ntawv hloov.

VMM domains muab cov hauv qab no:

Ib txheej txheej hauv ACI npuag uas ua rau muaj kev ua txhaum loj-hloov kev txhawb nqa rau ntau lub VM maub los platforms.
VMM txhawb nqa rau ntau tus neeg nyob hauv ACI ntaub. VMM domains muaj VM controllers xws li VMware vCenter lossis Microsoft SCVMM Manager thiab cov ntawv pov thawj xav tau rau ACI API los cuam tshuam nrog VM maub los.
Lub VMM sau ua rau VMmobility nyob rau hauv lub sau tab sis tsis hla cov thawj.

Ib tus VMM nkaus xwb tuaj yeem muaj ntau qhov piv txwv ntawm VM tswj tab sis lawv yuav tsum yog tib yam.
Rau example, VMM sau tuaj yeem muaj ntau VMware vCenters tswj ntau tus tswj hwm txhua tus khiav ntau VMs tab sis nws kuj yuav tsis muaj SCVMM Managers.
VMM sau cov khoom lag luam tswj cov ntsiab lus (xws li pNICs, vNICs, VM npe, thiab lwm yam) thiab thawb cov cai rau hauv cov tswj hwm, tsim cov pab pawg chaw nres nkoj, thiab lwm yam tsim nyog.

ACI VMM domain mloog rau cov xwm txheej xws li VM txav thiab teb raws li.

VMM Domain VLAN Pool Association

VLAN pas dej ua ke sawv cev thaiv cov tsheb khiav VLAN tus cim. Lub pas dej VLAN yog ib qho kev sib koom thiab tuaj yeem siv tau los ntawm ntau qhov chaw xws li VMM domains thiab Txheej 4 rau Txheej 7 cov kev pabcuam.

Txhua lub pas dej muaj ib hom kev faib (zoo li qub lossis dynamic), txhais thaum lub sijhawm tsim.
Hom kev faib khoom txiav txim siab seb cov cim muaj nyob hauv nws yuav raug siv rau kev ua haujlwm tsis siv neeg los ntawm Cisco APIC (dynamic) lossis teeb tsa tshwj xeeb los ntawm tus thawj coj (zoo li qub).
Los ntawm lub neej ntawd, tag nrho cov blocks uas muaj nyob rau hauv lub pas dej VLAN muaj tib hom kev faib raws li lub pas dej, tab sis cov neeg siv tuaj yeem hloov pauv hom kev faib rau cov blocks uas muaj nyob rau hauv cov pas dej dynamic kom zoo li qub. Ua li no tshem tawm lawv los ntawm kev faib tawm dynamic.

Lub VMM sau tuaj yeem cuam tshuam nrog tsuas yog ib lub pas dej VLAN dynamic.
Los ntawm lub neej ntawd, txoj haujlwm ntawm VLAN tus cim rau EPGs uas cuam tshuam nrog VMM thawj yog ua tiav los ntawm Cisco APIC.
Thaum qhov kev faib tawm dynamic yog lub neej ntawd thiab kev teeb tsa uas nyiam, tus thawj coj tuaj yeem muab tus VLAN tus cim rau qhov kawg pab pawg (EPG) hloov.

Nyob rau hauv tas li ntawd, cov cim qhia siv yuav tsum tau xaiv los ntawm encapsulation blocks nyob rau hauv lub VLAN pas dej ua ke txuam nrog VMM domain, thiab lawv cov faib hom yuav tsum tau hloov mus rau static.
Cisco APIC muab VMM domain VLAN ntawm nplooj ntawv chaw nres nkoj raws li EPG cov xwm txheej, xws li statically khi rau ntawm nplooj ntawv chaw nres nkoj lossis raws li VM cov xwm txheej los ntawm cov tswj xws li VMware vCenter lossis Microsoft SCVMM.

Nco tseg

Hauv cov pas dej VLAN dynamic, yog tias VLAN raug cuam tshuam los ntawm EPG, nws tau txais kev koom nrog EPG hauv tsib feeb.

Nco tseg

Lub koom haum Dynamic VLAN tsis yog ib feem ntawm kev teeb tsa rollback, uas yog, yog tias EPG lossis tus neeg xauj tsev tau pib tshem tawm thiab tom qab ntawd rov qab los ntawm kev thaub qab, VLAN tshiab tau txiav tawm los ntawm cov pas dej VLAN dynamic.

VMM Domain EPG Association

Cisco Daim Ntawv Thov Centric Infrastructure (ACI) npuag associates tenant application profile Cov pab pawg kawg (EPGs) rau virtual machine manager (VMM) domains, Cisco ACI ua li ntawd los ntawm ib qho orchestration tivthaiv xws li Microsoft Azure, lossis los ntawm Cisco Application Policy Infrastructure Controller (APIC) tus thawj coj tsim cov kev teeb tsa no. Ib qho EPG tuaj yeem nthuav dav ntau VMM thawj, thiab VMM tus sau tuaj yeem muaj ntau EPGs.

Hauv qhov piv txwv ua ntej, qhov kawg (EPs) ntawm tib xim yog ib feem ntawm tib EPG. Rau example, tag nrho cov EPs ntsuab nyob hauv tib EPG txawm tias lawv nyob hauv ob qhov sib txawv VMM. Saib Daim Ntawv Qhia Txog Kev Ntsuas Scalability tshiab kawg rau Cisco ACI rau virtual network thiab VMM sau EPG cov ntaub ntawv muaj peev xwm.

Nco tseg

Ntau qhov VMM tuaj yeem txuas mus rau tib nplooj ntawv hloov yog tias lawv tsis muaj VLAN sib tshooj ntawm tib qhov chaw nres nkoj.

Ib yam li ntawd, koj tuaj yeem siv tib lub VLAN pas dej ua ke hla ntau lub npe yog tias lawv tsis siv tib qhov chaw nres nkoj ntawm nplooj ntawv hloov.

EPGs tuaj yeem siv ntau qhov VMM cov npe hauv qab no:

Ib qho EPG hauv VMM sau tau txheeb xyuas los ntawm kev siv tus cim encapsulation. Cisco APIC tuaj yeem tswj tus lej cim tau, lossis tus thawj coj tuaj yeem xaiv nws. Ib example yog VLAN, Virtual Network ID (VNID).

Ib qho EPG tuaj yeem tsim tau rau ntau lub cev (rau cov hlau liab qab) lossis cov npe virtual. Nws tuaj yeem siv sib txawv VLAN lossis VNID encapsulations hauv txhua qhov chaw.

Nco tseg

Los ntawm lub neej ntawd, Cisco APIC dynamically tswj kev faib ntawm VLAN rau EPG.

VMware DVS cov thawj coj muaj kev xaiv los teeb tsa VLAN tshwj xeeb rau EPG.
Nyob rau hauv tas li ntawd, lub VLAN raug xaiv los ntawm ib tug zoo li qub faib thaiv nyob rau hauv lub pas dej ua ke uas yog txuam nrog VMM domain.
Cov ntawv thov tuaj yeem siv thoob plaws VMM cov npe.

Thaum nyob kev tsiv teb tsaws chaw ntawm VMs nyob rau hauv VMM sau tau txais kev txhawb nqa, kev nyob hauv kev tsiv teb tsaws ntawm VMs hla VMM domains tsis tau txais kev txhawb nqa.

Nco tseg

Thaum koj hloov VRF ntawm tus choj sau npe uas txuas rau EPG nrog VMM txuas nrog, pawg chaw nres nkoj raug tshem tawm thiab tom qab ntawd ntxiv rov qab rau vCenter.

Qhov no ua rau EPG tsis ua haujlwm los ntawm VMM sau. Qhov no yog qhov xav tau tus cwj pwm.

Hais txog Trunk Port Group

Koj siv ib pab pawg neeg lub cev los sib sau ua ke ntawm cov pab pawg kawg (EPGs) rau VMware virtual machine manager (VMM) domains.
Tsis zoo li cov chaw nres nkoj li niaj zaus, uas tau teeb tsa hauv qab Cov Tenants tab hauv Cisco Application Policy Infrastructure Controller (APIC) GUI, pawg chaw nres nkoj lub cev tau teeb tsa hauv qab VM Networking tab.

Cov chaw nres nkoj tsis tu ncua ua raws li T|A|E hom EPG npe.
Kev sib sau ntawm EPGs nyob rau hauv tib lub npe yog raws li VLAN ntau yam, uas tau teev tseg raws li cov blocks encapsulation muaj nyob rau hauv pawg pob tw.
Thaum twg lub encapsulation ntawm EPG raug hloov los yog lub encapsulation thaiv ntawm ib lub cev chaw nres nkoj pab pawg neeg raug hloov, lub aggregation yog rov ntsuam xyuas los txiav txim seb lub EGP yuav tsum aggregated.

Ib pawg chaw nres nkoj lub cev tswj xyuas cov nplooj xa tawm ntawm cov peev txheej hauv network, xws li VLANs, uas tau faib rau EPGs tau sib sau ua ke.
EPGs suav nrog ob lub hauv paus EPG thiab microsegmented (uSeg) EPGs. Nyob rau hauv cov ntaub ntawv ntawm ib tug neeg siv EPG, VLAN ntau yam ntawm lub cev chaw nres nkoj pab pawg neeg yuav tsum muaj xws li cov thawj thiab thib ob VLANs.

Yog xav paub ntxiv, saib cov txheej txheem hauv qab no:

Attachable Entity Profile

ACI ntaub muab ntau cov ntsiab lus txuas uas txuas los ntawm nplooj ntawv chaw nres nkoj mus rau ntau qhov chaw sab nraud xws li liab qab hlau servers, virtual tshuab hypervisors, Txheej 2 keyboards (rau example, Cisco UCS fabric interconnect), lossis Txheej 3 routers (example Cisco Nexus 7000 Series keyboards). Cov ntsiab lus txuas no tuaj yeem yog lub cev chaw nres nkoj, FEX chaw nres nkoj, chaw nres nkoj, lossis lub chaw nres nkoj virtual (vPC) ntawm nplooj ntawv hloov.

Nco tseg

Thaum tsim VPC sau ntawm ob nplooj ntawv hloov pauv, ob lub keyboards yuav tsum nyob rau hauv tib lub cim hloov, ib qho hauv qab no:

Tiam 1 – Cisco Nexus N9K hloov yam tsis muaj "EX" lossis "FX" thaum kawg ntawm lub npe hloov; rau example, N9K-9312TX
Tiam 2 – Cisco Nexus N9K hloov nrog "EX" lossis "FX" thaum kawg ntawm lub npe hloov qauv; rau example, N9K-93108TC-EX

Hloov xws li ob qho no tsis sib haum nrog VPC cov phooj ywg. Hloov chaw, siv cov keyboards ntawm tib tiam. Ib qho Attachable Entity Profile (AEP) sawv cev rau ib pab pawg ntawm cov koom haum sab nraud uas muaj cov cai tswjfwm zoo sib xws. Cov kev cai tsim kho vaj tse muaj xws li cov cai ntawm lub cev sib cuam tshuam uas teeb tsa ntau yam kev xaiv raws tu qauv, xws li Cisco Discovery Protocol (CDP), Link Layer Discovery Protocol (LLDP), lossis Link Aggregation Control Protocol (LACP) Ib qho AEP yuav tsum xa VLAN pas dej rau ntawm nplooj ntawv hloov. . Encapsulation blocks (thiab cuam tshuam VLANs) yog rov siv tau dua hla cov nplooj hloov pauv. Ib qho AEP implicitly muab lub peev xwm ntawm VLAN pas dej ua ke rau lub cev infrastructure. Cov kev cai AEP hauv qab no thiab kev vam khom yuav tsum raug suav rau hauv ntau qhov xwm txheej, suav nrog kev sib txuas hauv network, VMM domains, thiab ntau lub pod configuration:

AEP txhais qhov ntau ntawm VLANS tso cai tab sis nws tsis muab rau lawv. Tsis muaj kev khiav tsheb khiav tshwj tsis yog tias EPG raug xa mus rau ntawm qhov chaw nres nkoj. Yog tias tsis tau txhais lub pas dej VLAN hauv AEP, VLAN tsis tau qhib rau ntawm nplooj ntawv chaw nres nkoj txawm tias EPG tau npaj.
Ib qho VLAN tshwj xeeb yog muab los yog qhib rau ntawm nplooj ntawv chaw nres nkoj uas yog raws li EPG cov xwm txheej xws li statically khi rau ntawm nplooj ntawv chaw nres nkoj lossis raws li VM cov xwm txheej los ntawm cov tswj sab nraud xws li VMware vCenter lossis Microsoft Azure Service Center Virtual Machine Manager (SCVMM).
Txuas qhov chaw profiles tuaj yeem cuam tshuam ncaj qha nrog daim ntawv thov EPGs, uas xa cov ntawv txuas nrog EPGs rau tag nrho cov chaw nres nkoj cuam tshuam nrog lub koom haum txuas nrog.file. AEP muaj ib qho kev teeb tsa kev ua haujlwm (infraGeneric), uas muaj kev sib raug zoo rau EPG (infraRsFuncToEpg) uas tau muab tso rau ntawm txhua qhov kev sib tshuam uas yog ib feem ntawm cov neeg xaiv uas cuam tshuam nrog cov koom haum txuas nrog.file.

Tus thawj tswj hwm lub tshuab virtual (VMM) tau txais txiaj ntsig ntawm lub cev sib cuam tshuam cov cai los ntawm pawg tswj hwm kev cuam tshuam ntawm AEP.
Txoj cai override ntawm AEP tuaj yeem siv los qhia txog txoj cai sib txawv ntawm lub cev sib txawv rau VMM sau. Txoj cai no muaj txiaj ntsig zoo nyob rau hauv qhov xwm txheej uas tus tswj hwm VM txuas nrog nplooj hloov pauv los ntawm cov txheej txheem nruab nrab 2 ntawm, thiab txoj cai sib txawv yog xav tau ntawm nplooj ntawv hloov thiab VM maub los lub cev chaw nres nkoj. Rau example, koj tuaj yeem teeb tsa LACP ntawm nplooj ntawv hloov thiab Txheej 2 ntawm. Nyob rau tib lub sijhawm, koj tuaj yeem lov tes taw LACP ntawm VM maub los thiab Txheej Txheej 2 hloov los ntawm kev cuam tshuam LACP raws li AEP txoj cai tswjfwm.

Kev xa tawm tam sim

EPG Txoj Cai daws teeb meem thiab xa mus sai sai

Thaum twg ib pab pawg kawg (EPG) koom nrog rau tus thawj tswj hwm lub tshuab virtual (VMM) tus thawj tswj hwm, tus thawj coj tuaj yeem xaiv qhov kev daws teeb meem thiab xa cov kev nyiam los qhia tias thaum twg txoj cai yuav tsum raug thawb mus rau hauv nplooj ntawv hloov.

Kev daws teeb meem tam sim

Kev npaj ua ntej: Qhia meej tias txoj cai (example, VLAN, VXLAN binding, ntawv cog lus, los yog cov ntxaij lim dej) yog rub tawm mus rau nplooj ntawv hloov txawm tias ua ntej VM maub los txuas rau qhov hloov pauv virtual (rau example, VMware vSphere Distributed Switch (VDS). Qhov no pre-provisions lub configuration ntawm tus tes hloov.

Qhov no yuav pab tau qhov xwm txheej uas tswj kev khiav tsheb mus rau hypervisors / VM controllers kuj tseem siv cov hloov pauv virtual cuam tshuam nrog Cisco Application Policy Infrastructure Controller (APIC) VMM domain (VMM hloov).
Kev xa tawm VMM txoj cai xws li VLAN ntawm Cisco Application Centric Infrastructure (ACI) nplooj hloov yuav tsum Cisco APIC los sau CDP/LLDP cov ntaub ntawv los ntawm ob qho tib si hypervisors los ntawm VM maub los thiab Cisco ACI nplooj hloov. Txawm li cas los xij, yog tias tus tswj hwm VM yuav tsum siv tib txoj cai VMM (VMM hloov) los sib txuas lus nrog nws cov neeg saib xyuas lossis txawm tias Cisco APIC, CDP / LLDP cov ntaub ntawv rau cov neeg saib xyuas tsis tuaj yeem khaws tsis tau vim tias txoj cai uas xav tau rau VM maub los / hypervisor tswj kev khiav tsheb tseem tsis tau siv.
Thaum siv cov kev npaj ua ntej, txoj cai raug rub mus rau Cisco ACI nplooj hloov txawm hais tias

CDP/LLDP zej zog. Txawm tias tsis muaj tus tswv tsev hypervisor uas txuas nrog VMM hloov.
Tam sim no: Qhia meej tias EPG cov cai (suav nrog cov ntawv cog lus thiab cov ntxaij lim dej) tau rub tawm mus rau nplooj ntawv hloov pauv software raws li ESXi tus tswv tsev txuas rau DVS. LLDP lossis OpFlex kev tso cai yog siv los daws VM maub los rau nplooj ntawv txuas.
Txoj cai yuav raug rub mus rau Leaf thaum koj ntxiv tus tswv tsev rau VMM hloov. CDP/LLDP cov neeg zej zog los ntawm tus tswv mus rau nplooj yuav tsum tau.

On-Demand: Qhia meej tias txoj cai (example, VLAN, VXLAN bindings, daim ntawv cog lus, lossis cov lim dej) raug thawb rau ntawm nplooj ntawv tsuas yog thaum tus tswv tsev ESXi txuas nrog DVS thiab VM muab tso rau hauv pawg chaw nres nkoj (EPG).
Txoj cai yuav raug rub mus rau nplooj ntawv thaum tus tswv tsev ntxiv rau VMM hloov. VM yuav tsum tau muab tso rau hauv ib pawg chaw nres nkoj (EPG). CDP/LLDP cov neeg zej zog los ntawm tus tswv mus rau nplooj yuav tsum tau. Nrog ob qho tib si tam sim thiab raws li qhov xav tau, yog tias tus tswv tsev thiab nplooj poob LLDP / CDP cov neeg zej zog cov cai raug tshem tawm.

Nco tseg

Hauv OpFlex-raws li VMM domains, OpFlex tus neeg sawv cev ntawm tus neeg saib xyuas tshaj tawm VM / EP virtual network interface card (vNIC) txuas rau EPG rau cov txheej txheem OpFlex nplooj.
Thaum siv On Demand Resolution Immediacy, EPG VLAN / VXLAN yog programmed ntawm txhua nplooj ntawv chaw nres nkoj channel ports, virtual port channel ports, lossis ob qho tib si thaum cov hauv qab no muaj tseeb:
- Hypervisors txuas nrog nplooj ntawm qhov chaw nres nkoj channel lossis virtual chaw nres nkoj channel txuas ncaj qha lossis los ntawm cov hniav hloov pauv.
- VM lossis piv txwv vNIC txuas rau EPG.
- Hypervisors raug txuas ua ib feem ntawm EPG lossis VMM sau.
Opflex-based VMM domains yog Microsoft Security Center Virtual Machine Manager (SCVMM) thiab HyperV, thiab Cisco Application Virtual Switch (AVS).

Kev xa tawm tam sim

Thaum cov cai raug rub tawm mus rau nplooj ntawv software, kev xa tawm tam sim tuaj yeem qhia meej thaum txoj cai raug thawb mus rau hauv txoj cai kho vajtse cov ntsiab lus-chaw nyob nco (CAM).
Tam sim no: Qhia meej tias txoj cai yog programmed hauv txoj cai kho vajtse CAM sai li sai tau raws li txoj cai raug rub tawm hauv nplooj ntawv software.
On-demand: Qhia meej tias txoj cai yog programmed nyob rau hauv txoj cai kho vajtse CAM tsuas yog thaum thawj pob ntawv tau txais los ntawm txoj kev cov ntaub ntawv. Cov txheej txheem no yuav pab txhim kho qhov chaw kho vajtse kom zoo.

Nco tseg

Thaum koj siv qhov kev thov xa tawm tam sim nrog MAC-pinned VPCs, EPG cov ntawv cog lus tsis raug thawb mus rau nplooj ntawv ternary cov ntsiab lus-chaw nyob nco (TCAM) kom txog rau thaum thawj qhov kawg tau kawm hauv EPG ntawm txhua nplooj.
Qhov no tuaj yeem ua rau tsis sib xws TCAM siv thoob plaws VPC cov phooj ywg. (Feem ntau, daim ntawv cog lus yuav raug thawb rau ob leeg phooj ywg.)

Cov lus qhia rau kev rho tawm VMM Domains

Ua raws li cov lus qhia hauv qab no kom paub meej tias APIC thov kom tshem tawm VMM sau cia li ua rau tus tswj hwm VM cuam tshuam (rau example VMware vCenter lossis Microsoft SCVMM) kom ua tiav cov txheej txheem ib txwm ua thiab tsis muaj EPGs menyuam ntsuag raug tso tseg hauv ACI ntaub.

Tus thawj tswj hwm VM yuav tsum tshem tag nrho VMs los ntawm pawg chaw nres nkoj (xws li VMware vCenter) lossis VM tes hauj lwm (nyob rau hauv rooj plaub ntawm SCVMM), tsim los ntawm APIC. Nyob rau hauv rooj plaub ntawm Cisco AVS, VM admin kuj yuav tsum tau tshem tawm VMK cuam tshuam nrog Cisco AVS.
Tus thawj coj ACI tshem tawm VMM sau hauv APIC. APIC ua rau kev tshem tawm ntawm VMware VDS Cisco AVS lossis SCVMM kev hloov pauv thiab cov khoom cuam tshuam.

Nco tseg

Tus thawj tswj hwm VM yuav tsum tsis txhob rho tawm qhov hloov pauv virtual lossis cov khoom cuam tshuam (xws li pawg chaw nres nkoj lossis VM networks); tso cai rau APIC los ua qhov kev hloov pauv virtual thaum ua tiav cov kauj ruam 2 saum toj no. EPGs tuaj yeem raug menyuam ntsuag nyob hauv APIC yog tias tus thawj coj VM tshem tawm qhov hloov pauv virtual los ntawm VM maub los ua ntej VMM domain raug tshem tawm hauv APIC. Yog tias qhov no tsis ua raws li, tus tswj hwm VM tshem tawm qhov hloov pauv virtual cuam tshuam nrog APIC VMM sau. Hauv qhov xwm txheej no, VM tus thawj coj yuav tsum tau tshem tawm VM thiab vtep koom haum los ntawm VM maub los, thiab tom qab ntawd tshem tawm qhov hloov pauv virtual (es) yav dhau los cuam tshuam nrog APIC VMM sau.

NetFlow nrog Virtual Machine Networking

Hais txog NetFlow nrog Virtual Machine Networking

NetFlow thev naus laus zis muab lub hauv paus ntsuas rau cov txheej txheem tseem ceeb ntawm cov ntawv thov, suav nrog kev lag luam kev lag luam, kev siv nyiaj hauv network, kev npaj network, nrog rau kev tsis lees paub cov kev pabcuam, kev saib xyuas network, kev lag luam tawm sab nraud, thiab cov ntaub ntawv mining rau ob tus neeg muab kev pabcuam thiab cov neeg siv khoom lag luam.
Cisco muab cov txheej txheem ntawm NetFlow daim ntawv thov los sau NetFlow cov ntaub ntawv xa tawm, ua cov ntaub ntawv txo qis, ua tiav tom qab, thiab muab cov ntawv thov kawg rau cov neeg siv nrog yooj yim nkag mus rau NetFlow cov ntaub ntawv.
Yog tias koj tau qhib NetFlow kev saib xyuas ntawm cov tsheb khiav los ntawm koj lub chaw cov ntaub ntawv, qhov no ua rau koj ua tib theem ntawm kev saib xyuas cov tsheb khiav los ntawm Cisco Application Centric Infrastructure (Cisco ACI) ntaub.
Hloov chaw kho vajtse ncaj qha xa tawm cov ntaub ntawv mus rau ib tus neeg sau, cov ntaub ntawv tau ua tiav hauv lub cav tus thawj saib xyuas thiab raug xa tawm mus rau tus qauv NetFlow cov neeg sau ntawv hauv hom ntawv xav tau. Yog xav paub ntxiv txog NetFlow, saib Cisco APIC thiab NetFlow paub cov lus qhia.

Hais txog NetFlow Exporter Txoj Cai nrog Virtual Machine Networking

Tus thawj tswj hwm lub tshuab virtual xa tawm txoj cai (netflowVmmExporterPol) piav qhia txog cov ntaub ntawv khaws cia rau qhov ntws uas xa mus rau cov neeg rau zaub mov qhia lossis NetFlow sau. Tus neeg sau NetFlow yog ib qho chaw sab nraud uas txhawb nqa tus qauv NetFlow raws tu qauv thiab lees txais cov pob ntawv cim nrog NetFlow headers siv tau.
Ib txoj cai exporter muaj cov khoom nram qab no:

VmmExporterPol.dstAddr—Cov cuab yeej tsim nyog no qhia txog IPv4 lossis IPv6 chaw nyob ntawm NetFlow sau uas lees txais NetFlow flow packets. Qhov no yuav tsum yog nyob rau hauv hom tswv tsev (uas yog, "/32" lossis "/128"). Qhov chaw nyob IPv6 tau txais kev txhawb nqa hauv vSphere Distributed Switch (vDS) version 6.0 thiab tom qab ntawd.
VmmExporterPol.dstPort—Cov cuab yeej tsim nyog no qhia txog qhov chaw nres nkoj uas daim ntawv thov NetFlow collector tab tom mloog, uas ua rau tus neeg sau tuaj yeem txais kev sib txuas.
VmmExporterPol.srcAddr—Cov cuab yeej xaiv tau no qhia txog qhov chaw nyob IPv4 uas yog siv los ua qhov chaw nyob hauv cov ntawv xa tawm NetFlow ntws.

NetFlow Kev them nyiaj yug nrog VMware vSphere Distributed Hloov

VMware vSphere Distributed Switch (VDS) txhawb NetFlow nrog cov lus ceeb toom hauv qab no:

Tus neeg sau sab nraud yuav tsum ncav cuag los ntawm ESX. ESX tsis txhawb nqa virtual routing thiab forwardings (VRFs).
Ib pawg chaw nres nkoj tuaj yeem pab lossis lov tes taw NetFlow.
VDS tsis txhawb kev lim dej.

Configure VDS parameters hauv qab no hauv VMware vCenter:

Sau IP chaw nyob thiab chaw nres nkoj. IPv6 tau txais kev txhawb nqa ntawm VDS version 6.0 lossis tom qab ntawd. Cov no yog qhov yuav tsum tau ua.
Qhov chaw IP chaw nyob. Qhov no yog xaiv tau.
Active flow timeout, idle flow timeout, thiab sampling nqi. Cov no yog xaiv tau.

Configuring a NetFlow Exporter Policy rau VM Networking Siv GUI
Cov txheej txheem hauv qab no teeb tsa NetFlow exporter txoj cai rau VM networking.

Txheej txheem

Kauj ruam 1 Ntawm cov ntawv qhia zaub mov bar, xaiv Fabric> Access Policy.
Kauj ruam 2 Nyob rau hauv lub pane navigation, nthuav Txoj Cai> Interface> NetFlow.
Kauj ruam 3 Txoj cai-nias NetFlow Exporters rau VM Networking thiab xaiv Tsim NetFlow Exporter rau VM Networking.
Kauj ruam 4 Hauv Tsim NetFlow Exporter rau VM Networking dialogue box, sau rau hauv cov teb raws li xav tau.
Kauj ruam 5 Nyem Submit.

Siv NetFlow Exporter Txoj Cai Raws li VMM Domain Siv GUI

Cov txheej txheem hauv qab no siv NetFlow exporter txoj cai raws li VMM sau siv GUI.

Txheej txheem

Kauj ruam 1 Hauv cov ntawv qhia zaub mov bar, xaiv Virtual Networking> Cov Khoom Muag.
Kauj ruam 2 Hauv Navigation pane, nthuav VMMDomains nplaub tshev, nyem rau ntawm VMware, thiab xaiv Tsim Chaw Domain.
Kauj ruam 3 Hauv Tsim vCenter Domain dialog box, sau rau hauv cov teb raws li xav tau, tshwj tsis yog raws li tau teev tseg:
- a) Hauv NetFlow Exporter Policy drop-down daim ntawv teev npe, xaiv txoj cai xa tawm xav tau lossis tsim ib qho tshiab.
- b) Nyob rau hauv lub Active Flow Timeout teb, nkag mus rau qhov xav tau active flow timeout, nyob rau hauv vib nas this. Lub Active Flow Timeout parameter qhia txog qhov ncua sij hawm uas NetFlow tos tom qab qhov nquag nquag pib, tom qab uas NetFlow xa cov ntaub ntawv khaws tseg. Qhov ntau yog los ntawm 60 txog 3600. Tus nqi pib yog 60.
- c) Hauv Idle Flow Timeout teb, nkag mus rau qhov xav tau idle flow timeout, hauv vib nas this. Idle Flow Timeout parameter qhia txog qhov ncua sij hawm uas NetFlow tos tom qab qhov tsis ua haujlwm tau pib, tom qab uas NetFlow xa cov ntaub ntawv khaws tseg. Qhov ntau yog los ntawm 10 mus rau 300. Tus nqi pib yog 15.
- d) (VDS nkaus xwb) Hauv Sampling Rate teb, nkag mus rau qhov xav tau sampling nqi. Cov Sampling Rate parameter qhia tias muaj pes tsawg pob ntawv NetFlow yuav poob tom qab txhua pob ntawv sau. Yog tias koj qhia tus nqi ntawm 0, ces NetFlow tsis poob ib pob ntawv. Qhov ntau yog los ntawm 0 txog 1000. Tus nqi pib yog 0.
Kauj ruam 4 Nyem Submit.

Ua kom NetFlow ntawm Pab Pawg Endpoint rau VMM Domain Association Siv GUI

Cov txheej txheem hauv qab no tso cai rau NetFlow ntawm ib pab pawg kawg rau VMM domain koom haum.
Ua ntej koj pib
Koj yuav tsum tau configured cov hauv qab no:

Ib daim ntawv thov profile
Ib pab pawg endpoint app

Txheej txheem

Kauj ruam 1 Ntawm cov ntawv qhia zaub mov, xaiv Cov Neeg Siv> Txhua Tus Neeg.
Kauj ruam 2 Hauv Chaw Ua Haujlwm pane, nyem ob npaug rau tus neeg xauj tsev lub npe.
Kauj ruam 3 Hauv sab laug navigation pane, nthuav dav tenant_name> Daim Ntawv Thov Profiles > application_profile_name> Daim Ntawv Thov EPGs> application_EPG_name
Kauj ruam 4 Right-click Domains (VMs thiab Bare-Metals) thiab xaiv Ntxiv VMM Domain Association.
Kauj ruam 5 Hauv Add VMM Domain Association dialog box, sau rau hauv cov teb raws li xav tau; Txawm li cas los xij, hauv NetFlow cheeb tsam, xaiv Qhib.
Kauj ruam 6 Nyem Submit.

Troubleshooting VMM Connectivity

Cov txheej txheem hauv qab no daws teeb meem VMM txuas:

Txheej txheem

Kauj ruam 1 Ua kom cov khoom lag luam resync ntawm Daim Ntawv Thov Txoj Cai Tswj Xyuas Kev Tswj Xyuas Kev Lag Luam (APIC). Yog xav paub ntxiv txog yuav ua li cas thiaj li ua kom muaj cov khoom lag luam resync ntawm APIC, saib cov lus qhia hauv qab no:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/kb/b_KB_VMM_OnDemand_Inventory_in_APIC.html.
Kauj ruam 2 Yog tias kauj ruam 1 tsis kho qhov teeb meem, rau qhov cuam tshuam rau EPGs, teeb tsa kev daws teeb meem tam sim ntawd los siv kev npaj ua ntej hauv VMM sau. "Pre-Provision" tshem tawm qhov xav tau rau cov neeg nyob sib ze lossis OpFlex tso cai thiab tom qab ntawd qhov xwm txheej zoo ntawm VMM Domain VLAN Programming. Yog xav paub ntxiv txog hom kev daws teeb meem tam sim no, saib cov lus hauv qab no EPG Txoj Cai daws teeb meem thiab xa mus rau qhov tam sim no:
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/1-x/aci-fundamentals/b_ACI-Fundamentals/b_ACI-Fundamentals_chapter_01011.html#concept_EF87ADDAD4EF47BDA741EC6EFDAECBBD.
Kauj ruam 3 Yog tias cov kauj ruam 1 thiab 2 tsis kho qhov teeb meem thiab koj pom qhov teeb meem ntawm tag nrho cov VMs, ces tshem tawm VM tswj txoj cai thiab nyeem txoj cai.
Nco tseg Kev rho tawm txoj cai tswj hwm cuam tshuam rau kev khiav tsheb rau txhua tus VMs uas nyob ntawm tus tswj xyuas ntawd. Cisco ACI Virtual Tshuab Networking.

Cov ntaub ntawv / Cov ntaub ntawv

CISCO ACI Virtual Machine Networking [ua pdf] Cov neeg siv phau ntawv qhia
ACI Virtual Machine Networking, ACI, Virtual Machine Networking, Tshuab Networking, Networking

Cov ntaub ntawv

Cov neeg siv phau ntawv

CISCO ACI Virtual Machine Networking

Cov ntaub ntawv khoom

Cov lus qhia siv khoom

Kev them nyiaj yug Network

Daim ntawv qhia Cisco ACI thiab VMware Tsim

VMM Domain EPG Association

Hais txog Trunk Port Group

Attachable Entity Profile

Kev xa tawm tam sim

NetFlow nrog Virtual Machine Networking

Cov ntaub ntawv / Cov ntaub ntawv

Cov ntaub ntawv

Cia ib saib

Ncua tseg teb