At lahorir3 create layer3 vpn named as vpn12730: Configure the dc-karachi ASAv firewall karacf3 and dc-lahore ASAv Firewall lahorcf3 so that they can ping the PE router.Ĭreate two layer3 vpn at each DC as following.Configure the aggregation switch karais3 and lahoris3.These two vpn will overlap each other and carry the data we need to replicate from primary dc-karachi to secondary dc-lahore. Add layer3 vpn12729 at karair3 and vpn12730 at lahorir3.So based on above design, In this tutorial, I am only focusing on to perform following tasks: So our network design would look like following: We will also connect customer’s hosted physical firewalls to one of the trunk port on the switch that act as a aggregation switches. We will create a trunk link between PE router karair3/lahorir3 to the aggregation switch to carry customer’s VLAN. And to reach both of these hosted data center, we have an aggregation switches karais3/lahoris3 in Karachi/Lahore that connects PE router karair3/lahorir3 to the customer’s Physical Firewall in their hosted data center karacf3 and lahorcf3. These DC may be VDC or hosted as well for example Virtual Firewalls, Nexus 1000v Switch and Virtual Machines hosting customer Database, Applications and Web Servers.īut for the simplicity, we assume Service Provider’s Data center in Karachi is hosting dc-Karachi VDC and dc-Lahore in Lahore Data Center. We need to connect both of these hosted DC to the MPLS network via PE routers. So let’s begin.Īssuming as a IP/MPLS service provider, we also have two hosted Data Centers named as dc-Karachi and dc-Lahore at service provider location at Karachi & Lahore. In this section, I am going to add additional configuration to our existing service provider network which we build in Part-1.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |