[AusNOG] multi customer self manageable virtual router
Michael Andreas Schipp
MSchipp at a10networks.com
Sun Apr 28 14:01:02 EST 2013
If I understand what you are after then most can be done with an A10 Networks hardware of soft ADC (IPSEC would need to be done via another device however).
* Individual route/arp tables per customer
* Network separation
* IP address reuse (same IP range in different partitions)
* Individual web and SSH access
* Port forwarding will become a VIP
Note : routing via the GUI is for static routes only, via CLI IS-IS (V4 and V6, OSFP (V2 and V3), RIPv2/ng, BGP 4/4+
Number of Partitions/customers varies by platform ranging from 32 to 1024 per devices.
Michael A Schipp
Regional SE Manager ANZ
Direct: 0402 907 928
Email: mschipp at a10networks.com<mailto:mschipp at a10networks.com>
From: ausnog-bounces at lists.ausnog.net [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of David George
Sent: Sunday, 28 April 2013 10:31 AM
To: ausnog at lists.ausnog.net
Subject: [AusNOG] multi customer self manageable virtual router
Does anyone know if a product exists that can allow me to act as a gateway for a bunch of different private l3/l2 networks with overlapping ips... so it'll have to understand multiple route tables or vrf at some level (still need each customer isolated, although each customer can have multiple sites)... and give the customers the ability to manage their own ipsec tunnels, port forwards and anything else they're likely to want via a friendly web ui ? The alternative is running up one vm per customer of one of the many good all-in-one router distros.. Currently each customer is handed off via a dot1q vlan.
Or am I looking at this the wrong way, and should I move all of this onto some decent cisco kit and work on finding a friendly web ui that can manage rules relevant to the client on that device?
Thanks in advance
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the AusNOG