Hello everyone,
I'm struggling to find out if ISE have ability to cater for overlapping IP address ranges via VRF.
I noticed that ISE can be used to assign different VRFs via RADIUS, but not clear how it works, I mean how ISE can be aware of overlapping IP address ranges from VRF. Do we must use Trustsec SGT?
Thanks in advance for your help 
Regards,
Jina
Accepted Solutions
Hi Park,
I don't think I understand your question correctly.
If you are talking about Endpoints:
I noticed that ISE can be used to assign different VRFs via RADIUS
ISE can assign endpoints to different VLANs which can further be part of specific VRFs in the network.
If the question is about Network devices:
how ISE can be aware of overlapping IP address ranges from VRF
If you are talking about network devices, like a switch or Wireless controller that talks to ISE, then they need to be identified with unique IP addresses. If one or more 'Network Devices' are to be configured with the same IP address, then its not allowed. You get the following error:
Hope this helps.
Cheers!
-Hari
Hi Park,
I don't think I understand your question correctly.
If you are talking about Endpoints:
I noticed that ISE can be used to assign different VRFs via RADIUS
ISE can assign endpoints to different VLANs which can further be part of specific VRFs in the network.
If the question is about Network devices:
how ISE can be aware of overlapping IP address ranges from VRF
If you are talking about network devices, like a switch or Wireless controller that talks to ISE, then they need to be identified with unique IP addresses. If one or more 'Network Devices' are to be configured with the same IP address, then its not allowed. You get the following error:
Hope this helps.
Cheers!
-Hari
