Hi experts, I am solution`ng a multi-tenant DCI between 2 x datacenters. One is the primary and other is the standby DC. We have a 10G fiber connecting them on a CSR router. The service provider will NOT be doing any routing or MPLS, they will just provide a 10G fiber and we will take care of all the routing and logical separation. The solution in my mind is as below -
- Use VRF per customer on the CSR.
- On the LAN connecting side of the CSR, there will be a sub-interface with dot1q trunking and on the WAN side a GRE tunnel interface. Both will be part of the same VRF.
- Use BGP address family "ipv4 vrf" to advertise the vrf specific routes over the tunnel interface. (the bgp peering will happen over the tunnel interface).
- Encrypting the whole piece globally on the CSR. The ACL to match the interesting traffic for encryption will something like "permit gre any any"
PRTG system in place running other sensors on the same host, which are working. Ive added syslog receiver sensor and receiving PRTG data from switch that increases drops, errors and warning stats that disappear after a few minutes. Within mess...
Hi, here is an example how to configure IP-NAT, GRE, IPSEC. I've seen plenty of questions and this might be a good solution! (Mostly the use of commands that might remind u) IP NAT======================================================================...
Hi everyone.I have a problem in my Network.So i have 3 routers and a firewall in my topology. I have configured OSPF and all routers works expect R3 (see in the image below)When I watch my neignbor in R3 it says :192.168.7.7 1 INIT/DROTHER 00:00:37 10.0.2...
Host Onboarding is the term used when connecting an endpoint (hosts , IOT , Other devices) to the fabric , and can be accomplished in a couple of ways.One option is the "static" approach as oppose to the dynamic and secure approach using&nbs...