Ezihlokweni ezimbili zokuqala, ngiphakamise indaba ye-automation futhi ngadweba uhlaka lwayo, okwesibili ngenza ukuhlehla ku-virtualization yenethiwekhi, njengendlela yokuqala yokuzenzakalela ukucushwa kwezinsizakalo.
Manje sekuyisikhathi sokudweba umdwebo wenethiwekhi ebonakalayo.

Uma ungajwayele ukusetha amanethiwekhi esikhungo sedatha, ngincoma kakhulu ukuthi uqale ngawo izihloko ezikhuluma ngabo.

Zonke izinkinga:

• 0. ADSM. Ingxenye Zero. Ukuhlela
• 1. ADSM. Ingxenye yokuqala (okungemva kukaziro). I-virtualization yenethiwekhi
• 2. ADSM. Ingxenye yesibili. Idizayini yenethiwekhi

Izinqubo ezichazwe kulolu chungechunge kufanele zisebenze kunoma yiluphi uhlobo lwenethiwekhi, noma yimuphi usayizi, nanoma yiziphi izinhlobo zabathengisi (hhayi). Nokho, akunakwenzeka ukuchaza isibonelo sendawo yonke sokusetshenziswa kwalezi zindlela. Ngakho-ke, ngizogxila ekwakhiweni kwesimanje kwenethiwekhi ye-DC: I-Kloz Factory.
Sizokwenza i-DCI ku-MPLS L3VPN.

Inethiwekhi Yembondela isebenza phezu kwenethiwekhi ebonakalayo evela kumsingathi (lokhu kungaba i-VXLAN ye-OpenStack noma i-Tungsten Fabric nanoma yini enye edinga uxhumano lwe-IP oluyisisekelo kuphela kusuka kunethiwekhi).

Kulokhu, sithola isimo esilula kakhulu sokuzenzakalela, ngoba sinemishini eminingi elungiselelwe ngendlela efanayo.

Sizokhetha i-DC eyindilinga endaweni engenalutho:

• Inguqulo eyodwa yokuklama yonke indawo.
• Abathengisi ababili abakha izindiza ezimbili zenethiwekhi.
• I-DC eyodwa ifana nenye efana nophizi ababili ku-pod.

Okuqukethwe

• I-Physical topology
• Umzila
• Uhlelo lwe-IP
• Laba
• isiphetho
• Izixhumanisi eziwusizo

Vumela umhlinzeki wethu wesevisi i-LAN_DC, isibonelo, asingathe amavidiyo okuqeqesha mayelana nokuhlala kumakheshi abambekile.

Ema-megacities lokhu kudume kakhulu, ngakho udinga imishini eminingi yomzimba.

Okokuqala, ngizochaza inethiwekhi cishe ngendlela engingathanda ukuthi ibe ngayo. Bese ngiyenzela ilabhu ibe lula.

I-Physical topology

Izindawo

I-LAN_DC izoba nama-DC angu-6:

• Russia (RU):
  • eMoscow (msk)
  • Kazan (kzn)

• iSpain (SP):
  • Barcelona (bcn)
  • IsiMalaga (mlg)

• China (CN):
  • I-Shanghai (sha)
  • Xi'an (kokubili)

Ngaphakathi kwe-DC (Intra-DC)

Wonke ama-DC anamanethiwekhi afanayo okuxhumana angaphakathi asekelwe ku-Clos topology.
Hlobo luni lwamanethiwekhi akwaClos futhi kungani ehlukene isihloko.

I-DC ngayinye inama-rack angu-10 anemishini, azobalwa ngokuthi A, B, C Futhi njalo.

Irack ngayinye inemishini engama-30. Ngeke basithakasele.

Futhi ku-rack ngayinye kukhona inkinobho lapho yonke imishini ixhunywe khona - lokhu Phezulu kwe-Rack switch - i-ToR noma ngenye indlela, ngokwefekthri yakwa-Clos, sizoyibiza leaf.

Umdwebo ojwayelekile wefekthri.

Sizobabiza XXX-iqabungaYkuphi XXX - isifinyezo sezinhlamvu ezintathu DC, kanye Y - inombolo yomkhiqizo. Ngokwesibonelo, kzn-leaf11.

Ezihlokweni zami ngizozivumela ukuthi ngisebenzise amagama athi Leaf kanye ne-ToR kunalokho ngokungenangqondo njengama-synonyms. Nokho, kufanele sikhumbule ukuthi lokhu akunjalo.
I-ToR iyiswishi efakwe ku-rack okuxhunywe kuyo imishini.
I-Leaf indima yedivayisi kunethiwekhi ebonakalayo noma ukushintsha kweleveli yokuqala ngokuya nge-Cloes topology.
Okungukuthi, Iqabunga != ToR.
Ngakho-ke iLeaf ingaba yi-EndofRaw switch, isibonelo.
Kodwa-ke, ngaphakathi kohlaka lwalesi sihloko sisazowaphatha njengama-synonyms.

Iswishi ngayinye ye-ToR yona ixhunywe kumaswishi amane okuhlanganisa asezingeni eliphakeme - Isiphetho. I-rack eyodwa ku-DC yabelwe Spines. Sizoyiqamba ngendlela efanayo: XXX-umgogodlaY.

Indawo yokubeka efanayo izoqukatha okokusebenza kwenethiwekhi ukuze kuxhunywe phakathi kwamarutha e-DC - 2 ane-MPLS ebhodini. Kodwa ngokuvamile, lawa ama-ToR afanayo. Okusho ukuthi, ngokombono wokushintshwa kwe-Spine, i-ToR evamile enemishini exhunyiwe noma i-router ye-DCI ayinandaba nhlobo - ukudlulisa nje.

Ama-ToR anjalo akhethekile abizwa Iqabunga lomphetho. Sizobabiza XXX-unqenqemaY.

Kuzobukeka kanje.

Emdwebeni ongenhla, empeleni ngibeke unqenqema neqabunga ezingeni elifanayo. Amanethiwekhi ezendlalelo ezintathu zakudala Basifundisa ukuthi sicabangele ukukhuphula (yingakho igama) njengama-uplinks. Futhi lapha kuvela ukuthi i-DCI "uplink" ibuyela phansi, okuthi kwabanye iphule kancane umqondo ojwayelekile. Endabeni yamanethiwekhi amakhulu, lapho izikhungo zedatha zihlukaniswa ngamayunithi amancane kakhulu - IPOD's (Iphoyinti Lokulethwa), gqamisa umuntu ngamunye I-Edge-POD's for DCI kanye nokufinyelela kumanethiwekhi angaphandle.

Ukuze kube lula ukuqonda esikhathini esizayo, ngisazodweba i-Edge phezu komgogodla, kuyilapho sizokhumbula ukuthi akukho ukuhlakanipha ku-Spine futhi akukho mehluko lapho usebenza ne-Leaf evamile ne-Edge-leaf (nakuba kungase kube nama-nuances lapha. , kodwa ngokujwayelekile Lokhu kuyiqiniso).

Uhlelo lwemboni enama-Edge-leafs.

I-trinity yeLeaf, Spine kanye ne-Edge yakha inethiwekhi ye-Underlay noma imboni.

Umsebenzi wefekthri yenethiwekhi (funda i-Underlay), njengoba sesivele sichazile kuyo ukukhishwa kokugcina, kakhulu, kulula kakhulu - ukunikeza uxhumano lwe-IP phakathi kwemishini kokubili ngaphakathi kwe-DC efanayo naphakathi kwayo.
Kungakho inethiwekhi ibizwa ngokuthi imboni, njengesibonelo, imboni eshintshayo ngaphakathi kwamabhokisi enethiwekhi ajwayelekile, ongafunda kabanzi ngawo. I-SDSM14.

Ngokuvamile, i-topology enjalo ibizwa ngokuthi imboni, ngoba indwangu ekuhumusheni isho indwangu. Futhi kunzima ukungavumelani:

Imboni iyi-L3 ngokuphelele. Ayikho i-VLAN, akukho Broadcast - sinabahleli bezinhlelo abahle kangaka e-LAN_DC, bayakwazi ukubhala izinhlelo zokusebenza ezihlala ku-paradigm ye-L3, futhi imishini ebonakalayo ayidingi Ukufuduka Okubukhoma ngokulondolozwa kwekheli le-IP.

Futhi futhi: impendulo yombuzo wokuthi kungani imboni nokuthi kungani i-L3 isendaweni ehlukile isihloko.

I-DCI - Data Center Interconnect (Inter-DC)

I-DCI izohlelwa kusetshenziswa i-Edge-Leaf, okusho ukuthi, iyindawo yethu yokuphumela kuthelawayeka.
Ukuze kube lula, sicabanga ukuthi ama-DC axhunywe komunye nomunye ngezixhumanisi eziqondile.
Masikhiphe ukuxhumana kwangaphandle ekucabangeni.

Ngiyazi ukuthi njalo uma ngisusa ingxenye, ngenza inethiwekhi ibe lula kakhulu. Futhi uma sishintsha inethiwekhi yethu engabonakali, yonke into izolunga, kodwa kweyoqobo kuzoba nezinduku.
Yiqiniso lokhu. Noma kunjalo, iphuzu lalolu chungechunge wukucabanga nokusebenza ngezindlela, hhayi ukuxazulula izinkinga ezicatshangelwayo ngobuqhawe.

Ku-Edge-Leafs, i-underlay ifakwa ku-VPN futhi idluliselwe ngomgogodla we-MPLS (isixhumanisi esifanayo esiqondile).

Lona umdwebo wezinga eliphezulu esiwutholayo.

Umzila

Ngomzila ngaphakathi kwe-DC sizosebenzisa i-BGP.
Esiqwini seMPLS OSPF+LDP.
Ku-DCI, okungukuthi, ukuhlela ukuxhumana ngaphansi komhlaba - BGP L3VPN phezu kwe-MPLS.

Uhlelo olujwayelekile lomzila

Ayikho i-OSPF noma i-ISIS (iphrothokholi yomzila enqatshelwe e-Russian Federation) efektri.

Lokhu kusho ukuthi ngeke kube khona Ukuzitholela Okuzenzakalelayo noma ukubalwa kwezindlela ezimfishane - okwenziwa ngesandla kuphela (empeleni kuyazenzakalela - sikhuluma ngokuzenzakalelayo lapha) ukumisa umthetho olandelwayo, indawo kanye nezinqubomgomo.

Isikimu somzila se-BGP ngaphakathi kwe-DC

Kungani BGP?

Kulesi sihloko kukhona I-RFC yonke ebizwa ngegama lika-Facebook no-Arista, elitshela ukuthi kwakhiwe kanjani enkulu kakhulu amanethiwekhi esikhungo sedatha esebenzisa i-BGP. Ifundeka njengenganekwane, ngiyincoma kakhulu kusihlwa okungenamsoco.

Futhi kukhona nesigaba sonke esihlokweni sami esinikezelwe kulokhu. Ngikuthathaphi futhi ngiyathumela.

Kodwa noma kunjalo, ngamafuphi, ayikho i-IGP efanelekile kumanethiwekhi ezikhungo ezinkulu zedatha, lapho inani lamadivayisi enethiwekhi lingena ezinkulungwaneni.

Ngaphezu kwalokho, ukusebenzisa i-BGP yonke indawo kuzokuvumela ukuthi ungachithi isikhathi ekusekeleni amaphrothokholi amaningana ahlukene nokuvumelanisa phakathi kwawo.

Isandla enhliziyweni, efektri yethu, okuyinto ngezinga eliphezulu lokungenzeka ngeke likhule ngokushesha, i-OSPF izokwanela amehlo. Lezi yizinkinga zama-megascaler nama-titans wamafu. Kepha ake sicabange ngokukhishwa okumbalwa esikudingayo, futhi sizosebenzisa i-BGP, njengoba uPyotr Lapukhov ashiyela ifa.

Izinqubomgomo Zomzila

Kumaswishi eLeaf, singenisa iziqalo ukusuka ku-Underlay network interface kuya ku-BGP.
Sizoba neseshini ye-BGP phakathi ngamunye ipheya yeLeaf-Spine, lapho lezi ziqalo ezingaphansi kwe-Underlay zizomenyezelwa khona ngenethiwekhi lapha nalaphaya.

Ngaphakathi kwesikhungo sedatha esisodwa, sizosabalalisa izichasiselo esizingenise ku-ToRe. Ku-Edge-Leafs sizokuhlanganisa futhi simemezele kuma-DC akude futhi sikuthumele ezansi kuma-TOR. Okusho ukuthi, i-ToR ngayinye izokwazi kahle ukuthi ungafika kanjani kwenye i-ToR ku-DC efanayo nalapho indawo yokungena iwukuba ufinyelele ku-ToR kwenye i-DC.

Ku-DCI, imizila izodluliswa njenge-VPNv4. Ukwenza lokhu, ku-Edge-Leaf, isikhombimsebenzisi esibheke efektri sizofakwa ku-VRF, masiyibize ngokuthi i-UNDERLAY, futhi indawo eseduze ne-Spine on Edge-Leaf izokhuphuka ngaphakathi kwe-VRF, naphakathi kwe-Edge-Leafs ku-VPNv4- umndeni.

Futhi sizokwenqabela ukumenyezelwa kabusha kwemizila etholwe kuma-spines ebuyela kubo.

KuLeaf and Spine ngeke singenise ama-Loopbacks. Sizidinga kuphela ukuze sinqume i-ID Yomzila.

Kodwa ku-Edge-Leafs siyingenisa ku-Global BGP. Phakathi kwamakheli e-Loopback, i-Edge-Leafs izosungula iseshini ye-BGP ku-IPv4 VPN-umndeni nomunye nomunye.

Sizoba nomgogodla we-OSPF+LDP phakathi kwamadivayisi we-EDGE. Konke kusendaweni eyodwa. Ukucushwa okulula kakhulu.

Lesi isithombe esinomzila.

I-BGP ASN

I-Edge-Leaf ASN

Ku-Edge-Leafs kuzoba ne-ASN eyodwa kuwo wonke ama-DC. Kubalulekile ukuthi kube ne-iBGP phakathi kwe-Edge-Leafs, futhi singabambeki emicabangweni ye-eBGP. Makube ngu-65535. Eqinisweni, lokhu kungaba inombolo ye-AS yomphakathi.

Umgogodla we-ASN

Ku-Spine sizoba ne-ASN eyodwa nge-DC ngayinye. Ake siqale lapha ngenombolo yokuqala kakhulu ukusuka kububanzi be-AS yangasese - 64512, 64513 Nokunjalo.

Kungani i-ASN ku-DC?

Ake sihlukanise lo mbuzo kube ezimbili:

• Kungani ama-ASN afana kuwo wonke ama-spines we-DC eyodwa?
• Kungani behlukile kuma-DC ahlukene?

Kungani ama-ASN afanayo kuwo wonke ama-spines we-DC eyodwa?

Yile ndlela ezobukeka ngayo i-AS-Path yomzila we-Underlay ku-Edge-Leaf:
[leafX_ASN, spine_ASN, edge_ASN]
Uma uzama ukuyikhangisa uyibuyisele ku-Spine, izoyilahla ngoba i-AS (Spine_AS) yayo isivele isohlwini.

Kodwa-ke, ngaphakathi kwe-DC saneliseke ngokuphelele ukuthi imizila ye-Underlay ekhuphukela ku-Edge ngeke ikwazi ukwehla. Konke ukuxhumana phakathi kwababungazi ngaphakathi kwe-DC kumele kwenzeke ngaphakathi kwezinga lomgogodla.

Kulokhu, imizila ehlanganisiwe yamanye ama-DC noma yikuphi izofinyelela kalula kuma-ToRs - i-AS-Path yawo izoba ne-ASN 65535 kuphela - inombolo ye-AS Edge-Leafs, ngoba yilapho idalwe khona.

Kungani behlukile kuma-DC ahlukene?

Ngokwetiyori, singase sidinge ukuhudula i-Loopback kanye neminye imishini ebonakalayo yesevisi phakathi kwama-DC.

Isibonelo, kumsingathi sizosebenzisa i-Route Reflector noma i-VNGW efanayo (I-Virtual Network Gateway), ezokhiywa nge-TopR nge-BGP futhi imemezele i-loopback yayo, okufanele ifinyeleleke kuwo wonke ama-DC.

Ngakho-ke nansi indlela i-AS-Path yayo ezobukeka ngayo:
[VNF_ASN, leafX_DC1_ASN, spine_DC1_ASN, edge_ASN, spine_DC2_ASN, leafY_DC2_ASN]

Futhi akumele kube nama-ASN ayimpinda noma kuphi.

Okusho ukuthi, i-Spine_DC1 kanye ne-Spine_DC2 kufanele yehluke, njenge-leafX_DC1 kanye ne-leafY_DC2, okuyiyona kanye esisondela kuyo.

Njengoba cishe uyazi, kukhona ama-hacks akuvumela ukuthi wamukele imizila enama-ASN ayimpinda ngaphandle kwendlela yokuvimbela iluphu (i-allowas-in ku-Cisco). Futhi inokusetshenziswa okusemthethweni. Kodwa leli yigebe elingaba khona ekuzinzeni kwenethiwekhi. Futhi mina ngokwami ​​ngawela kukho izikhathi ezimbalwa.

Futhi uma sithola ithuba lokungazisebenzisi izinto eziyingozi, sizolisebenzisa ngokunenzuzo.

Leaf ASN

Sizoba ne-ASN ngayinye ekushintsheni kweLeaf ngakunye kuyo yonke inethiwekhi.
Senza lokhu ngezizathu ezinikezwe ngenhla: I-AS-Path ngaphandle kwezihibe, ukucushwa kwe-BGP ngaphandle kwamabhukhimakhi.

Ukuze imizila ephakathi Kwamaqabunga ihambe kahle, i-AS-Path kufanele ibukeke kanje:
[leafX_ASN, spine_ASN, leafY_ASN]
lapho i-leafX_ASN ne-leafY_ASN kungaba kuhle ukwehluka.

Lokhu kuyadingeka futhi esimweni lapho kumenyezelwa i-loopback ye-VNF phakathi kwama-DC:
[VNF_ASN, leafX_DC1_ASN, spine_DC1_ASN, edge_ASN, spine_DC2_ASN, leafY_DC2_ASN]

Sizosebenzisa i-ASN ye-4-byte futhi siyikhiqize ngokusekelwe ku-ASN ye-Spine kanye nenombolo yokushintsha Iqabunga, okungukuthi, kanje: Umgogodla_ASN.0000X.

Lesi yisithombe esine-ASN.

Uhlelo lwe-IP

Ngokuyisisekelo, sidinga ukwaba amakheli okuxhumana okulandelayo:

1. Gcwalisa amakheli enethiwekhi phakathi kwe-ToR nomshini. Kufanele zihluke kuyo yonke inethiwekhi ukuze noma yimuphi umshini ukwazi ukuxhumana nanoma yimuphi omunye. Ukulingana okuhle 10/8. Kwirack ngayinye kukhona / 26 enendawo yokugcina. Sizokwaba /19 nge-DC kanye /17 isifunda ngasinye.
2. Xhumanisa amakheli phakathi kweLeaf/Tor kanye neSpine.

   Ngingathanda ukuwanika i-algorithmically, okungukuthi, ukubala kusuka kumagama wamadivayisi adinga ukuxhunywa.

   Makube... 169.254.0.0/16.
   Okungukuthi 169.254.00X.Y/31kuphi X - Inombolo yomgogodla, Y - Inethiwekhi ye-P2P /31.
   Lokhu kuzokuvumela ukuthi uqalise ama-racks afika ku-128, futhi kufika ku-10 Spines ku-DC. Amakheli okuxhuma angakwazi (futhi azophinda) aphindwe ukusuka ku-DC kuye ku-DC.

3. Sihlela ukuhlangana kwe-Spine-Edge-Leaf kuma-subnet 169.254.10X.Y/31, lapho kufana ncamashi X - Inombolo yomgogodla, Y - Inethiwekhi ye-P2P /31.
4. Xhumanisa amakheli ukusuka ku-Edge-Leaf ukuya kumgogodla we-MPLS. Lapha isimo sihlukile - indawo lapho zonke izingcezu zixhunywe kuphayi owodwa, ngakho-ke ukusebenzisa kabusha amakheli afanayo ngeke kusebenze - udinga ukukhetha i-subnet elandelayo yamahhala. Ngakho-ke, ake sithathe njengesisekelo 192.168.0.0/16 futhi sizokhipha abakhululekile kuyo.
5. Amakheli e-Loopback. Sizonikeza lonke uhla lwabo 172.16.0.0/12.
   • Iqabunga - / 25 nge-DC - ama-racks angu-128 afanayo. Sizokwaba/23 isifunda ngasinye.
   • Umgogodla - / 28 nge-DC - kuze kufike ku-16 Spine. Asabele/26 isifunda ngasinye.
   • I-Edge-Leaf - /29 i-DC ngayinye - kufika kumabhokisi angu-8. Asabele/27 isifunda ngasinye.

Uma singenabo ububanzi obabiwe obanele ku-DC (futhi ngeke bube khona - sithi singama-hyperscaler), sivele sikhethe ibhulokhi elandelayo.

Lesi isithombe esinekheli le-IP.

Ama-Loopbacks:

Isiqalo
Indima yedivayisi
Isifunda
ДЦ

172.16.0.0/23
Unqenqema
 
 

172.16.0.0/27
ru
 

172.16.0.0/29
msk

172.16.0.8/29
kzn

172.16.0.32/27
sp
 

172.16.0.32/29
bcn

172.16.0.40/29
mlg

172.16.0.64/27
cn
 

172.16.0.64/29
sha

172.16.0.72/29
kokubili

172.16.2.0/23
emgogodleni
 
 

172.16.2.0/26
ru
 

172.16.2.0/28
msk

172.16.2.16/28
kzn

172.16.2.64/26
sp
 

172.16.2.64/28
bcn

172.16.2.80/28
mlg

172.16.2.128/26
cn
 

172.16.2.128/28
sha

172.16.2.144/28
kokubili

172.16.8.0/21
amaqabunga
 
 

172.16.8.0/23
ru
 

172.16.8.0/25
msk

172.16.8.128/25
kzn

172.16.10.0/23
sp
 

172.16.10.0/25
bcn

172.16.10.128/25
mlg

172.16.12.0/23
cn
 

172.16.12.0/25
sha

172.16.12.128/25
kokubili

I-Underlay:

Isiqalo
Isifunda
ДЦ

10.0.0.0/17
ru
 

10.0.0.0/19
msk

10.0.32.0/19
kzn

10.0.128.0/17
sp
 

10.0.128.0/19
bcn

10.0.160.0/19
mlg

10.1.0.0/17
cn
 

10.1.0.0/19
sha

10.1.32.0/19
kokubili

Laba

Abathengisi ababili. Inethiwekhi eyodwa. I-ADSM.

Umjunipha + Arista. Ubuntu. Kuhle Eva omdala.

Inani lezinsiza kuseva yethu ebonakalayo e-Mirana lisalinganiselwe, ngakho-ke ukuze sizijwayeze sizosebenzisa inethiwekhi eyenziwe lula yafinyelela umkhawulo.

Izikhungo zedatha ezimbili: I-Kazan ne-Barcelona.

• Imigqa emibili ngayinye: iJuniper ne-Arista.
• I-torus eyodwa (Leaf) endaweni ngayinye - iJuniper no-Arista, enomphathi oyedwa oxhunyiwe (ake sithathe i-Cisco IOL engasindi kulokhu).
• I-Edge-Leaf node eyodwa ngayinye (okwamanje yiJuniper kuphela).
• Iswishi eyodwa yeCisco ukuze ibuse bonke.
• Ngaphezu kwamabhokisi enethiwekhi, umshini wokulawula obonakalayo uyasebenza. Isebenza Ubuntu.
  Inokufinyelela kuwo wonke amadivayisi, izosebenzisa izinhlelo ze-IPAM/DCIM, iqoqo lemibhalo yePython, i-Ansible nanoma yini enye esingase siyidinge.

Ukucushwa okugcwele yawo wonke amadivaysi enethiwekhi, esizozama ukuwakhiqiza sisebenzisa i-automation.

isiphetho

Ingabe nakho kuyamukelwa? Ingabe kufanele ngibhale isiphetho esifushane ngaphansi kwesihloko ngasinye?

Ngakho sakhetha amazinga amathathu Inethiwekhi ye-Kloz ngaphakathi kwe-DC, njengoba silindele okuningi kwethrafikhi yaseMpumalanga-West futhi sifuna i-ECMP.

Inethiwekhi ihlukaniswe ngokomzimba (i-underlay) kanye ne-virtual (imbondela). Ngesikhathi esifanayo, imbondela iqala kusukela kumsingathi - ngokwenza kube lula izidingo ze-underlay.

Sikhethe i-BGP njengephrothokholi yomzila yamanethiwekhi enethiwekhi ngokulinganisa kwawo kanye nokuguquguquka kwenqubomgomo.

Sizoba namanodi ahlukene wokuhlela i-DCI - Edge-leaf.
Umgogodla uzoba ne-OSPF+LDP.
I-DCI izosetshenziswa ngokusekelwe ku-MPLS L3VPN.
Ngezixhumanisi ze-P2P, sizobala amakheli e-IP ngokususelwa kumagama edivayisi.
Sizonikeza ama-loopbacks ngokuya ngendima yamadivayisi nendawo yawo ngokulandelana.
Iziqalo ze-underlay - kumaswishi e-Leaf kuphela ngokulandelana ngokusekelwe endaweni yawo.

Ake sicabange ukuthi okwamanje asinazo izisetshenziswa ezifakiwe.
Ngakho-ke, izinyathelo zethu ezilandelayo kuzoba ukuzifaka ezinhlelweni (IPAM, inventory), ukuhlela ukufinyelela, ukukhiqiza ukumisa nokukusebenzisa.

Esihlokweni esilandelayo sizobhekana ne-Netbox - i-inventory kanye nesistimu yokuphatha yesikhala se-IP ku-DC.

Ngiyabonga

• U-Andrey Glazkov aka @glazgoo ukuze ahlolwe futhi alungiswe
• Alexander Klimenko aka @v00lk ukuze ahlolwe futhi ahlelwe
• Artyom Chernobay for KDPV

Source: www.habr.com