In specific use cases, it may be necessary to operate the SD-AVC Network Service on a host device on which the host interface that is used by SD-AVC as its gateway interface may be attached to a VRF. In this case, the typical installation command described in Installing the SD-AVC Network Service cannot be used, and manual configuration is required, using the following guidelines:

• Ensure that the virtual port group and gateway interface(s) are not on the same subnet.

• Assign the virtual port group and gateway interface(s) to a VRF.

• Ensure that the IP address of the SD-AVC network service (guest IP in the configuration steps below) is on the virtual port group subnet.

Example:

ip vrf Mgt
!
interface VirtualPortGroup31
ip vrf forwarding Mgt
ip address 10.56.197.221 255.255.255.0
!
interface GigabitEthernet1
ip vrf forwarding Mgt
ip address 10.56.196.169 255.255.255.0
!
virtual-service SDAVC
vnic gateway VirtualPortGroup31
  guest ip address 10.56.197.222
activate
!