As the title suggests, I work for a small MSP with about 100 customers. Our current network is very old and has end of life network gear.
As we look to upgrade the network, our manager wants us to explore the idea of a Layer 3 network and eliminate Layer 2 from the network core. A good idea indeed, however, is it worth the added complexity ?
We have VMware hosts and some standalone bare metal servers too. J don't think we can afford NSX, so the Multi-tenancy has to be taken care of in the network. In our current design, we have a firewall pair that acts as a GW for all vlans. Each customer gets their sets of vlans, which have the GW on the FW and connect to it via VLAN extension through the network.
So, as I explore the idea, I think I have 3 options.. 1. Listen to the vendors and look into evpn + vxlan. .. is it worth it ? (Also we don't have money for nsx) 2. Replace customer specific VLANs with VRFs on a L3 network. 3. Buy new gear, but keep it L2, just like we have now.
Any suggestions would be welcome..
No comments:
Post a Comment