search

What should you create if you need to service multiple ipv4 subnets on a single physical network?

1 Jahrs vor
Kommentare: 0
Ansichten: 17

You need the following components to connect your Outpost rack to your on-premises network:

Show

  • Physical connectivity from the Outpost patch panel to your customer local network devices.

  • Link Aggregation Control Protocol (LACP) to establish two link aggregation group (LAG) connections to your Outpost network devices and to your local network devices.

  • Virtual LAN (VLAN) connectivity between the Outpost and your customer local network devices.

  • Layer 3 point-to-point connectivity for each VLAN.

  • Border Gateway Protocol (BGP) for the route advertisement between the Outpost and your on-premises service link.

  • BGP for the route advertisement between the Outpost and your on-premises local network device for connectivity to the local gateway.

Topics

  • Physical connectivity
  • Link aggregation
  • Virtual LANs
  • Network layer connectivity
  • Service link BGP connectivity
  • Service link infrastructure subnet advertisement and IP range
  • Local gateway BGP connectivity
  • Local gateway customer-owned IP subnet advertisement

Physical connectivity

An Outpost rack has two physical network devices that attach to your local network.

An Outpost requires a minimum of two physical links between these Outpost network devices and your local network devices. An Outpost supports the following uplink speeds and quantities for each Outpost network device.

Uplink speedNumber of uplinks

1 Gbps

1, 2, 4, 6, or 8

10 Gbps

1, 2, 4, 8, 12, or 16

40 Gbps or 100 Gbps

1, 2, or 4

The uplink speed and quantity are symmetrical on each Outpost network device. If you use 100 Gbps as the uplink speed, you must configure the link with forward error correction (FEC CL91).

Outpost racks can support single-mode fiber (SMF) with Lucent Connector (LC), multimode fiber (MMF), or MMF OM4 with LC. AWS provides the optics that are compatible with the fiber that you provide at the rack position.

In the following diagram, the physical demarcation is the fiber patch panel in each Outpost. You provide the fiber cables that are required to connect the Outpost to the patch panel.

AWS Outposts uses the Link Aggregation Control Protocol (LACP) to establish two link aggregation group (LAG) connections, one from each Outpost network device to each local network device. The links from each Outpost network device are aggregated into an Ethernet LAG to represent a single network connection. These LAGs use LACP with standard fast timers.

To enable an Outpost installation at your site, you must configure your side of the LAG connections on your network devices.

From a logical perspective, ignore the Outpost patch panels as the demarcation point and use the Outpost networking devices.

For deployments that have multiple racks, an Outpost must have four LAGs between the aggregation layer of the Outpost network devices and your local network devices.

The following diagram shows four physical connections between each Outpost network device and its connected local network device. We use Ethernet LAGs to aggregate the physical links connecting the Outpost network devices and the customer local network devices.

What should you create if you need to service multiple ipv4 subnets on a single physical network?

Virtual LANs

Each LAG between an Outpost network device and a local network device must be configured as an IEEE 802.1q Ethernet trunk. This enables the use of multiple VLANs for network segregation between data paths.

Each Outpost has the following data paths between the on-premises network and its network:

  • Service link VLAN – Enables communication between the Outpost and the AWS Region for both management of the Outpost and intra-VPC traffic between the AWS Region and Outpost. This VLAN provides access to the AWS Region, which enables the service link connection from the Outpost to be established back to the Region. The service link is a custom VPN or VPNs from the Outpost to the Region. It is connected to the Outpost that is configured in the Availability Zone when your purchase the Outpost.

  • Local gateway VLAN – Enables VPC traffic from your VPC to your local LAN. This VLAN enables instances running on the Outpost to communicate with your on-premises network. It also enables them to communicate with the internet through your on-premises network.

You can configure the service link VLAN and local gateway VLAN only between the Outpost and your customer local network devices.

An Outpost is designed to separate the service link and local gateway data paths into two isolated networks. This enables you to choose which of your networks can communicate with services running on the Outpost. It also enables you to make the service link an isolated network from the local gateway network by using multiple route table on your customer local network device, commonly known as Virtual Routing and Forwarding instances (VRF). The demarcation line exists at the port of the Outpost network devices. AWS manages any infrastructure on the AWS side of the connection, and you manage any infrastructure on your side of the line.

What should you create if you need to service multiple ipv4 subnets on a single physical network?

To integrate your Outpost with your on-premises network during the installation and on-going operation, you must allocate the VLANs used between the Outpost network devices and the customer local network devices. You need to provide this information to AWS before the installation. For more information, see Network readiness checklist.

Network layer connectivity

Each Outpost network device requires an IP address on each VLAN so they can communicate with the customer local network devices to establish a BGP session. We recommend that you use a dedicated subnet, with a /30 or /31 CIDR, to represent this logical point-to-point connectivity. We recommend that you do not bridge the VLANs between your customer local network devices.

You need to establish two paths:

  • Service link path - To establish this path, specify a VLAN subnet with a range of /30 or /31 and an IP address for the service link VLAN on the Outpost network device.

  • Local gateway path - To establish this path, specify a VLAN subnet with a range of /30 or /31 and an IP address for the local gateway VLAN on the Outpost network device.

The following diagram shows the connections from each Outpost network device to the customer local network device for the service link path and the local gateway path. There are four VLANs for this example:

  • VLAN A is for the service link path that connects the Outpost network device 1 with the customer local network device 1.

  • VLAN B is for the local gateway path that connects the Outpost network device 1 with the customer local network device 1.

  • VLAN C is for the service link path that connects the Outpost network device 2 with the customer local network device 2.

  • VLAN D is for the local gateway path that connects the Outpost network device 2 with the customer local network device 2.

The following table shows example values for the subnets that connect the Outpost network device 1 with the customer local network device 1.

VLANSubnetCustomer Device 1 IPAWS OND 1 IP
A

10.0.0.0/30

10.0.0.2 10.0.0.1
B 172.16.0.0/30

172.16.0.2

172.16.0.1

The following table shows example values for the subnets that connect the Outpost network device 2 with the customer local network device 2.

VLANSubnetCustomer Device 2 IPAWS OND 2 IP
C

10.0.0.4/30

10.0.0.6 10.0.0.5
D 172.16.0.4/30

172.16.0.6

172.16.0.5

The Outpost establishes an external BGP peering session between each Outpost network device and the customer local network device for service link connectivity over the service link VLAN. The BGP peering session is established between the /30 or /31 IP addresses provided for the point-to-point VLAN. Each BGP peering session uses a private Autonomous System Number (ASN) on the Outpost network device and an ASN that you choose for your customer local network devices. AWS provides the attributes as part of the installation process.

Consider the scenario where you have an Outpost with two Outpost network devices connected by a service link VLAN to two customer local network devices. You configure the following infrastructure, and customer local network device BGP ASN attributes for each service link:

  • The service link BGP ASN. 2-byte (16-bit) or 4-byte (32-bit). The valid values are 64512-65535 or 4200000000-4294967294.

  • The infrastructure CIDR. This must be a /26 CIDR per rack.

  • The customer local network device 1 service link BGP peer IP address.

  • The customer local network device 1 service link BGP peer ASN. The valid values are 1-4294967294.

  • The customer local network device 2 service link BGP peer IP address.

  • The customer local network device 2 service link BGP peer ASN. The valid values are 1-4294967294. For more information, see RFC4893.

What should you create if you need to service multiple ipv4 subnets on a single physical network?

The Outpost establishes an external BGP peering session over the service link VLAN using the following process:

  1. Each Outpost network device uses the ASN to establish a BGP peering session with its connected local network device.

  2. Outpost network devices advertise the /26 CIDR range as two /27 CIDR blocks to support link and device failures.

  3. The subnet is used for connectivity from the Outpost to the AWS Region.

You provide a /26 CIDR range during the pre-installation process for the service link infrastructure subnet. The Outpost infrastructure uses this range to establish connectivity to the Region through the service link. The service link subnet is the Outpost source, which initiates the connectivity.

Outpost network devices advertise the /26 CIDR range as two /27 CIDR blocks to support link and device failures.

You must provide a service link BGP ASN and an infrastructure subnet CIDR (/26) for the Outpost. For each Outpost network device, provide the BGP peering IP address on the VLAN of the local network device and the BGP ASN of the local network device.

If you have a multiple rack deployment, you must have one /26 subnet per rack.

Local gateway BGP connectivity

The Outpost establishes an external BGP peering from each Outpost network device to a local network device for connectivity to the local gateway. It uses a private Autonomous System Number (ASN) that you assign in order to establish the external BGP sessions. Each Outpost network device has a single external BGP peering to a local network device using its local gateway VLAN.

The Outpost establishes an external BGP peering session over the local gateway VLAN between each Outpost network device and its connected customer local network device. The peering session is established between the /30 or /31 IPs that you provided when you set up network connectivity and uses point-to-point connectivity between the Outpost network devices and customer local network devices. For more information, see Network layer connectivity.

Each BGP session uses the private ASN on the Outpost network device side, and an ASN that you choose on the customer local network device side. AWS provides the attributes as part of the pre-installation process.

Consider the scenario where you have an Outpost with two Outpost network devices connected by a service link VLAN to two customer local network devices. You configure the following local gateway and customer local network device BGP ASN attributes for each service link:

  • AWS provides the local gateway BGP ASN. 2-byte (16-bit) or 4-byte (32-bit). The valid values are 64512-65535 or 4200000000-4294967294.

  • (Optional) You provide the customer owned CIDR that gets advertised (public or private, /26 minimum).

  • You provide the customer local network device 1 local gateway BGP peer IP address.

  • You provide the customer local network device 1 local gateway BGP peer ASN. The valid values are 1-4294967294. For more information, see RFC4893.

  • You provide the customer local network device 2 local gateway BGP peer IP address.

  • You provide the customer local network device 2 local gateway BGP peer ASN. The valid values are 1-4294967294. For more information, see RFC4893.

What should you create if you need to service multiple ipv4 subnets on a single physical network?

Local gateway customer-owned IP subnet advertisement

By default, the local gateway uses the private IP addresses of instances in your VPC to facilitate communication with your on-premise network. However, you can provide a customer-owned IP address pool (CoIP).

If you choose CoIP, AWS creates the pool from information you provide during the installation process. You can create Elastic IP addresses from this pool, and then assign the addresses to resources on your Outpost, such as EC2 instances.

The local gateway translates the Elastic IP address to an address in the customer-owned pool. The local gateway advertises the translated address to your on-premises network, and any other network that communicates with the Outpost. The addresses are advertised on both local gateway BGP sessions to the local network devices.

If you are not using CoIP, then BGP advertises the private IP addresses of any subnets on your Outpost that have a route in the route table that targets the local gateway.

Consider the scenario where you have an Outpost with two Outpost network devices connected by a service link VLAN to two customer local network devices. The following is configured:

  • A VPC with a CIDR block 10.0.0.0/16.

  • A subnet in the VPC with a CIDR block 10.0.3.0/24.

  • An EC2 instance in the subnet with a private IP address 10.0.3.112.

  • A customer-owned IP pool (10.1.0.0/26).

  • An Elastic IP address association that associates 10.0.3.112 to 10.1.0.2.

  • A local gateway that uses BGP to advertise 10.1.0.0/26 to the on-premises network through the local devices.

  • Communication between your Outpost and on-premises network will use the CoIP Elastic IPs to address instances in the Outpost, the VPC CIDR range is not used.

What should you create if you need to service multiple ipv4 subnets on a single physical network?

Can one DHCP server service multiple IPv4 subnets?

The DHCP Server Multiple Subnet feature enables multiple disjoint subnets to be configured under the same DHCP address pool. This functionality enables the DHCP server to manage additional IP addresses by adding the addresses to the existing DHCP address pool (instead of using a separate address pool).

What type of IPv6 address configuration uses DHCPv6?

DHCPv6. This is a combination of IPv6 Stateless Address Autoconfiguration (RFC 4862) and Dynamic Host Control Protocol for IPv6 (RFC 3315). It is a counterpart to IPv6 Stateless Address Autoconfiguration, and can be used with or without IPv6 Stateless Address Autoconfiguration to obtain configuration parameters.

Which of the following kinds of information are part of a DHCP server configuration choose two answers?

The DHCP server can give a client all the information it needs to function, including IP address, boot server, and network configuration information.

Which of the following techniques can you use to provide high availability for a DHCP scope?

DHCP failover provides redundancy and load balancing for DHCP services, enabling administrators to deploy a highly resilient DHCP service. With DHCP failover, Internet Protocol version 4 (IPv4) scopes with associated leases, reservations, options, and settings, are shared by two Windows DHCP servers.

create service multiple ipv4 subnets single physical network

zusammenhängende Posts

Which process involves working with stakeholders to create the document that formally authorizes?
Which process involves working with stakeholders to create the document that formally authorizes?

In which stage of the product life cycle will promotional expenditures be especially high in an attempt to create customer awareness?
In which stage of the product life cycle will promotional expenditures be especially high in an attempt to create customer awareness?

Why is it a good idea to create a “budgeting assumptions” when creating a master budget?
Why is it a good idea to create a “budgeting assumptions” when creating a master budget?

What is defined as any purposeful communication that deceives manipulates or conceals facts in order to create a false impression?
What is defined as any purposeful communication that deceives manipulates or conceals facts in order to create a false impression?

Why do we need to create an information system vision during the strategic is planning process?
Why do we need to create an information system vision during the strategic is planning process?

Is the utilization of the bundle of heterogeneous resources capabilities and core competencies that can be used to create an exclusive market position?
Is the utilization of the bundle of heterogeneous resources capabilities and core competencies that can be used to create an exclusive market position?

A temporary endeavor undertaken to create a unique product, service, or result is termed a
A temporary endeavor undertaken to create a unique product, service, or result is termed a

Immediately after having surgery to create an ileostomy, which goal has the highest priority?
Immediately after having surgery to create an ileostomy, which goal has the highest priority?

Which of the following is most likely to create positive momentum in a conflict resolution process?
Which of the following is most likely to create positive momentum in a conflict resolution process?

Which of the following statements will create a class named Red that is based on the class Color
Which of the following statements will create a class named Red that is based on the class Color

Werbung

NEUESTEN NACHRICHTEN

Which list below contains only information systems development project risk factors?
1 Jahrs vor . durch MaleAllocation
Controlling measures the of actual performance from the standard performance
1 Jahrs vor . durch BrokenDeficiency
Welche Elemente kommen im menschlichen Körper vor?
1 Jahrs vor . durch LeveragedAvarice
Mit anzusehen wenn der mann anbaut
1 Jahrs vor . durch GubernatorialFreestyle
Second Hand Kinder in der Nähe
1 Jahrs vor . durch Tax-freeChemotherapy
Which of the following statements is true regarding surface-level diversity?
1 Jahrs vor . durch CracklingLordship
Wie wird man im Solarium am besten braun?
1 Jahrs vor . durch FlushedDemeanor
When giving a speech of presentation you should usually explain why the recipient is being given his or her award?
1 Jahrs vor . durch DentalSnail
Wie lange ist 3 tage fieber ansteckend
1 Jahrs vor . durch ObsessiveRedemption
Was sagt man wenn jemand in rente geht
1 Jahrs vor . durch SubjectiveCriminality

Werbung

Populer

Werbung

Um

Legal

Hilfe

Sozial

homeendefrjakoptzhhi
Urheberrechte © © 2024 decemle Inc.