Table Of Content
Introduction In the last few of my blog entries, I discussed setting up a virtual lab using Cumulus’ VX image for VirtualBox. I then went through and got EVPN working, and finally showed how using VXLAN, we can consider dumping MPLS for L2VPNs. This entry will focus on automating the bring-up of a new switch running Cumulus, and it’ll…
Table Of Content
Introduction In a previous entry, I described my thoughts on using VXLAN to replace MPLS for L2VPNs across a network. After reading through it, I decided to go back and re-do the configuration examples a bit, to make things a bit more like a backbone with several hops between the customer routers. This entry will outline those changes and…
Table Of Content
Introduction In a previous entry, I chronicled my self-education regarding Cumulus’ OS and how to do EVPN VXLAN with it. Throughout this entry, I’ll be referring back to that document, including some of the diagrams, configurations, etc. This entry will explain another use for VXLAN, and that’s running it instead of MPLS to handle L2VPNs across a network. That…
Table Of Content
Introduction State-tracking firewall devices are commonly deployed at the border of data centers, office networks, and other corporate environments where precious IP needs to be kept out of the hands of others. My opinion of these firewall devices is that they should be avoided at all costs, and I’ll get into that later. Sometimes we’re forced to deploy things…
Table Of Content
Introduction and Purpose Introduction Almost three years ago, I wrote this long and detailed post about building a VXLAN-enabled virtual lab on a KVM hypervisor, using Arista’s vEOS image. Prior to that, I also wrote up this post regarding the ideas around using VXLAN for spanning L2 across an L3 infrastructure. In the second post, I wrote about the…
Like the rest of the posts on this blog, this is an opinion piece based on my 2+ decades on the industry. Some will agree, others will disagree. Let’s get started. Definition of IT Security When I say “IT security”, I specifically mean that which secures your office place. The PCs, laptops, Macs, and the networking that your employees use…
Table Of Content
In my VXLAN: Providing Ponies for Bad System Designers entry, I discussed using an L2 overlay technology such as VXLAN to provide virtually spanned L2 VLANs over an L3 infrastructure. In this document, I’ll show via diagrams and config snippets how to build a poorly-designed network and why it’s a problem. Then I’ll use VXLAN to build a similar…
Table Of Content
This post will show up in both the FreeBSD section as well as the Network one. It’s sort of a combination of the two. I’ve been detailing my server conversions from Linux to FreeBSD on this blog, but I held off on the final device, and that’s the router. It turned out to be a hell of a challenge…
Table Of Content
Preface This write-up will consist of technical concepts, architecture ideas, and lots of opinion. All of which are based on 20 years of building big networks in datacenters. I’ve heard it all, seen it all, and have probably already built it. Some of the opinions in this article may come across as a bit cruel. They’ve been forged over…