Thursday, November 11, 2021

Layer 3 Leaf/Spine without overlay network controller?

Hi,

We are redesigning our network architecture for new locations, and we were thinking about going with a layer 3 leaf/spine fabric design. However, we have some constraints which I believe will become pain points for us.

Notably, we are looking at using VMware NSX-T as the overlay network. This will work for most of our traffic, but some of our traffic will still need to be VLAN-only. Because we will be using VMware NSX-T already, we aren't too keen on also going with ACI, as this would represent extra costs for us with little benefits.

However, judging by the fact that some of the traffic will not be encapsulated in VXLAN, and that these VLANs may spread across mutliple leaf pairs on a single site, we need a way to allow "layer 2" communication between these leaf switches. We also need to support multi-tenancy via VRFs.

To that end, I was thinking about building an EVPN mesh across the leaf switches. My main concern regarding that is manageability (how hard is it to manage without an overlay controller) and compatibility with VMware NSX-T (can the Geneve traffic be encapsulated in VXLAN?)

Does anyone have experience with a similar setup? Are we headed for a world of pain? Should we just stick to good ol' spanning-tree?



No comments:

Post a Comment