DENOG14

Providing firewalled network segments within an EVPN fabric using a routed approach
11-15, 14:00–14:30 (Europe/Berlin), Helmut Schmidt Auditorium
Language: English

This talk will present a scalable, redundant and vendor-neutral approach to provide firewalled network segments within an EVPN fabric.

Instead of stretching layer-2 segments, VRF route leaking is used to route traffic from network segments to the firewalls in a generic way. Using anycast gateways within the EVPN fabric, a consistent gateway behavior across firewalled and non-firewalled network segments is achieved.

See also: Slides (652.0 KB)

Network Architect at KIT