Providing firewalled network segments within an EVPN fabric using a routed approach

Benedikt Neuffer

Playlists: 'denog14' videos starting here / audio

This talk will present a scalable, redundant and vendor-neutral approach to provide firewalled network segments within an EVPN fabric.

Instead of stretching layer-2 segments, VRF route leaking is used to route traffic from network segments to the firewalls in a generic way. Using anycast gateways within the EVPN fabric, a consistent gateway behavior across firewalled and non-firewalled network segments is achieved.

None

Download

Embed

Share:

Tags