FreeBSD, Network Architecture, Server and OS

Adding More ECMP and Health Checking To Anycast Lab

Table Of Content

Introduction In yesterday’s Load Balancers Be Damned post, I demonstrated how adding Free Range Routing to servers could provide a way to do anycast load balancing without the need for expensive load balancers in some cases.  What I didn’t really demonstrate well was the ECMP capabilities of the leaf nodes.  I also punted on the required local health checking…

Continue Reading

FreeBSD, Network Architecture, Server and OS

Load Balancers Be Damned: Routing On The Server

Table Of Content

Introduction Companies such as F5, A10, and Netscaler (owned by Citrix) have built their respective businesses on the need for load balancing devices in the data center and other parts of the network.  While these devices can make the sharing of the load of incoming service connections (eg: HTTP, DNS, etc) very easy, they also come with a sometimes…

Continue Reading

Network Architecture

Automating Cumulus With Ansible and ZTP

Table Of Content

Introduction In the last few of my blog entries, I discussed setting up a virtual lab using Cumulus’ VX image for VirtualBox.  I then went through and got EVPN working, and finally showed how using VXLAN, we can consider dumping MPLS for L2VPNs.  This entry will focus on automating the bring-up of a new switch running Cumulus, and it’ll…

Continue Reading

Network Architecture

VXLAN Instead of MPLS – Part 2

Table Of Content

Introduction In a previous entry, I described my thoughts on using VXLAN to replace MPLS for L2VPNs across a network.  After reading through it, I decided to go back and re-do the configuration examples a bit, to make things a bit more like a backbone with several hops between the customer routers.  This entry will outline those changes and…

Continue Reading

Network Architecture

VXLAN Instead of MPLS

Table Of Content

Introduction In a previous entry, I chronicled my self-education regarding Cumulus’ OS and how to do EVPN VXLAN with it.  Throughout this entry, I’ll be referring back to that document, including some of the diagrams, configurations, etc.  This entry will explain another use for VXLAN, and that’s running it instead of MPLS to handle L2VPNs across a network.  That…

Continue Reading

Network Architecture

Deploying Firewalls With Routing

Table Of Content

Introduction State-tracking firewall devices are commonly deployed at the border of data centers, office networks, and other corporate environments where precious IP needs to be kept out of the hands of others.  My opinion of these firewall devices is that they should be avoided at all costs, and I’ll get into that later.  Sometimes we’re forced to deploy things…

Continue Reading