Providing firewalled network segments within an EVPN fabric using a routed approach
This talk will present a scalable, redundant and vendor-neutral approach to provide firewalled network segments within an EVPN fabric.
Instead of stretching layer-2 segments, VRF route leaking is used to route traffic from network segments to the firewalls in a generic way. Using anycast gateways within the EVPN fabric, a consistent gateway behavior across firewalled and non-firewalled network segments is achieved.