| CPC H04L 49/104 (2013.01) [H04L 12/462 (2013.01); H04L 12/4633 (2013.01); H04L 41/0893 (2013.01); H04L 45/04 (2013.01); H04L 45/16 (2013.01); H04L 45/24 (2013.01); H04L 45/74 (2013.01); H04L 49/1553 (2013.01); H04L 49/203 (2013.01); H04L 61/106 (2013.01); H04L 63/20 (2013.01); H04L 69/22 (2013.01)] | 18 Claims |
|
1. A unified fabric system, comprising:
a first switching fabric at a first site;
a second switching fabric at a second site, wherein the first site is at a different geographic location than the second site, wherein the first switching fabric and the second switching fabric are communicatively coupled via a public network; and
a multi-site controller configured to:
create a stretched EPG extending between the first and second sites and containing at least a first endpoint in the first site and a second endpoint and in the second site, wherein the stretched EPG defines a security policy shared by the first and second endpoints;
identify a subset of endpoints in the stretched EPG using a filtering criteria based on a type of the subset of endpoints, wherein the type comprises at least one of (i) an operating system, (ii) an virtual machine, (iii) a hypervisor, (iv) an application, (v) a range of IP addresses, or (vi) a range of MAC addresses corresponding to the subset of endpoints; and
create a micro-stretched EPG from the subset of endpoints, wherein the micro-stretched EPG extends between the first and second sites and wherein the subset of endpoints is removed from the stretched EPG.
|