View
188
Download
4
Category
Preview:
Citation preview
© 2015 IBM Corporation
IBM SoftLayerDirect Link Patterns
2016/11/12Cloud Computing
IBM JapanTomoyuki Niijima
Pattern S: Direct Link CSP, BGP in between CERs and XCRs
CER1
CER2
XCR1
XCR2
Vyatta1
Vyatta2
SoftLayerPrivate Network
On-premise server
SoftLayerserver
Customer’s address network
SoftLayer’s address network
VIPVIP
172.16.x.0/24
BGP:XCR2 > CER2: 10.x.y.0/26CER2 > XCR2: 172.16.x.0/24
BGP:XCR1 > CER1: 10.x.y.0/26CER1 > XCR1: 172.16.x.0/24
10.256.c.d/30
10.256.a.b/30
Customer’s Intranet
© 2016 IBM Corporation 2
10.x.y.0/26
Pattern A: BGP in between CERs and XCRs + Single GRE tunnel over a Direct Link CSP
CER1
CER2
XCR1
XCR2
Vyatta1
Vyatta2
Customer’s Intranet
SoftLayerPrivate Network
On-premise server
SoftLayerserver
Customer’s address network
SoftLayer’s address network
VIPVIP
172.16.x.0/24
GRE tunnel
10.256.c.d/30
10.256.a.b/30
© 2016 IBM Corporation 3
BGP:XCR2 > CER2: 10.x.y.0/26CER2 > XCR2: 172.16.x.0/24
BGP:XCR1 > CER1: 10.x.y.0/26CER1 > XCR1: 172.16.x.0/24
10.x.y.0/26
Pattern L: Static route in between CERs and XCRs + double GRE tunnel with OSPF over a Direct Link CSP
CER1
CER2
XCR1
XCR2
Vyatta1
Vyatta2
Customer’s Intranet
SoftLayerPrivate Network
On-premise server
SoftLayerserver
Customer’s address network
SoftLayer’s address network
VIP
10.256.c.d/30
10.256.a.b/30
GRE tunnel
OSPF
OSPF
OSPF
OSPF
© 2016 IBM Corporation 4
BGP:XCR2 > CER2: 10.x.y.0/26CER2 > XCR2: 172.16.x.0/24
BGP:XCR1 > CER1: 10.x.y.0/26CER1 > XCR1: 172.16.x.0/24
10.x.y.0/26
Pattern B: a Direct Link for Cloud and closed IP-VPN
CER1 XCR1
Vyatta1
Vyatta2
ClosedIP-VPN
SoftLayerPrivate Network
On-premise server
SoftLayerserver
Customer’s address network
SoftLayer’s address network
VIP
10.256.a.b/30
172.16.x.0/24
ECX
VC
© 2016 IBM Corporation 5
BGP:XCR1 > CER1: 10.x.y.0/26CER1 > XCR1: 172.16.x.0/24 10.x.y.0/26
Pattern K: GRE tunnel over a Direct Link for Cloud and closed IP-VPN
CER1 XCR1
Vyatta1
Vyatta2
ClosedIP-VPN
SoftLayerPrivate Network
On-premise server
SoftLayerserver
Customer’s address network
SoftLayer’s address network
VIP
10.256.a.b/30
GRE tunnel
172.16.x.0/24
ECX
VC
© 2016 IBM Corporation 6
BGP:XCR1 > CER1: 10.x.y.0/26CER1 > XCR1: 172.16.x.0/24 10.x.y.0/26
Pattern T: Direct Link NSP
CER1 XCR1SoftLayerPrivate Network
SoftLayerserver
Customer’s address network
SoftLayer’s address network
172.16.x.0/24
10.256.a.b/30
Customer’s Intranet
On-premise server
Wide EthernetService
© 2016 IBM Corporation 7
BGP:XCR1 > CER1: 10.x.y.0/26CER1 > XCR1: 172.16.x.0/24
10.x.y.0/26
© 2016 IBM Corporation 8
Obsolete patterns
The following patterns are obsolete because BGP is mandatory for each Direct Link connections now. No more subnets for the customer’s side will be provided by SoftLayer. Instead, routes for customer side network can be advertised through BGP.
Pattern S: Direct Link CSP, BGP in between CERs and XCRs
CER1
CER2
XCR1
XCR2
Vyatta1
Vyatta2
SoftLayerPrivate Network
On-premise server
SoftLayerserver
Customer’s address network
SoftLayer’s address network
VIPVIP
172.16.x.0/24
BGP:XCR2 > CER2: 10.0.0.0/8CER2 > XCR2: 172.16.x.0/24
BGP:XCR1 > CER1: 10.0.0.0/8CER1 > XCR1: 172.16.x.0/24
10.256.c.d/30
10.256.a.b/30
Customer’s Intranet
© 2016 IBM Corporation 9
Caution: This pattern is obsolete.
Pattern A: BGP in between CERs and XCRs + Single GRE tunnel over a Direct Link CSP
CER1
CER2
XCR1
XCR2
Vyatta1
Vyatta2
Customer’s Intranet
SoftLayerPrivate Network
On-premise server
SoftLayerserver
Customer’s address network
SoftLayer’s address network
VIPVIP
172.16.x.0/24
BGP:XCR2 > CER2: 10.0.0.0/8CER2 > XCR2: 172.16.x.0/24
BGP:XCR1 > CER1: 10.0.0.0/8CER1 > XCR1: 172.16.x.0/24 GRE tunnel
10.256.c.d/30
10.256.a.b/30
© 2016 IBM Corporation 10
Caution: This pattern is obsolete.
Pattern T: Direct Link NSP + NAT
CER1 XCR1SoftLayerPrivate Network
SoftLayerserver
Customer’s address network
SoftLayer’s address network
172.16.x.0/24
10.256.a.b/30
Customer’s Intranet
On-premise server
NAT
Wide EthernetService
© 2016 IBM Corporation 11
Caution: This pattern is obsolete.
Pattern K: GRE tunnel over a Direct Link for Cloud and closed IP-VPN
CER1 XCR1
Vyatta1
Vyatta2
ClosedIP-VPN
SoftLayerPrivate Network
On-premise server
SoftLayerserver
Customer’s address network
SoftLayer’s address network
VIP
10.256.a.b/30
GRE tunnel
172.16.x.0/24
ECX
VC
© 2016 IBM Corporation 12
Caution: This pattern is obsolete.
Pattern KN: GRE over two Direct Link NSP + IPsec over the Internet, all routed by OSPF
CER1
CER2
XCR1
XCR2
Vyatta1
Vyatta2
Customer’sGlobalIntranet
SoftLayerPrivate Network
On-premiseLocation JP SoftLayer
server
Customer’s address network
SoftLayer’s address network
VIP
10.256.c.d/30
10.256.a.b/30
Vyatta3
Vyatta4
SoftLayerserverVIP
On-premiseLocation EU
On-premiseLocation US
TOK01 PoP
DAL03 PoP
TOK02 DC
DAL06 DC
GRE
GRE
GRE
IPsec
IPsec
© 2016 IBM Corporation 13
Caution: This pattern is obsolete.
Recommended