GRE over IPSec Tunnel and NAT Between Cisco and VyOS
The goal of this tutorial is to provide a configuration for Cisco and VyOS network devices with configured PAT (Port Address Translation) that connect two remote sides A and B through point-to-point GRE tunnel encapsulated into a IPsec tunnel. In a previous tutorial we proved that GRE tunnels in conjunction with IPsec tunnels transmit multicast traffic while data integrity, authentication and confidentiality was in place. I also provided a simple configuration of GRE, IPsec tunnel and OSPF routing protocol on the Cisco and VyOS routers. In this tutorial I will go further and provide full configuration of the all network devices including PAT and access-lists. 
Picture 1 - Network Topology
Topology Description - Side A
Each side has a Layer 2 Cisco switch located in a LAN network. A switch connects hosts to its switchports. Each switchport is assigned to a particular VLAN. For instance, a host PC1 is connected to the switch SW1 and the switchport is assigned to a VLAN 100. Hosts in VLAN 100 (subnet 192.168.1.0/24) have guaranteed access to a remote subnet 192.168.2.0/24 via GRE/IPsec tunnel. A NAT access-list configured on a router R1 ensures that IP address of the host in VLAN 100 is not translated by PAT when a destination address is Continue reading
Considerations for Running Docker for Windows Server 2016 with Hyper-V VMs
We often get asked at Docker, “Where should I run my application? On bare metal, virtual or cloud?” The beauty of Docker is that you can run a container anywhere, so we usually answer this question with “It depends.” Not what you were looking for, right?
To answer this, you first need to consider which infrastructure makes the most sense for your application architecture and business goals. We get this question so often that our technical evangelist, Mike Coleman has written a few blogs to provide some guidance:
- To Use Physical Or To Use Virtual: That Is The Container Deployment Question
- So, When Do You Use A Container Or VM?
During our recent webinar, titled “Docker for Windows Server 2016”, this question came up a lot, specifically what to consider when deploying a Windows Server 2016 application in a Hyper-V VM with Docker and how it works. First, you’ll need to understand the differences between Windows Server containers, Hyper-V containers, and Hyper-V VMs before considering how they work together.
A Hyper-V container is a Windows Server container running inside a stripped down Hyper-V VM that is only instantiated for containers.
This provides additional kernel isolation and separation from Continue reading
Docker Weekly Roundup | October 23, 2016
The last week of October 2016 is over and you know what that means; another Docker news roundup. Highlights include Windows workloads with Image2Docker, part four of the SwarmKit series, and a Docker InfraKit test-drive! As we begin a new week, let’s recap our five top stories:
- Windows Workloads with Image2Docker – a community supported and designed project to demonstrate the ease of creating Windows Containers from existing servers. Interested parties are encouraged to fork it, play with it and contribute pull requests back to the community.
- SwarmKit – Part 4 – a tutorial series on Docker SwarmKit led by Gabriel Schenker. Part four of the series explains how to create a swarm in the cloud and run a sample application on it.
- Docker Volumes – user instructions on how to make sure posts and images stay permanent via Docker volumes, even with an upgrade to a container image, as showcased by Alex Ellis.
- InfraKit Test-Drive – a detailed illustration of a sample Docker image created to demonstrate InfraKit’s self-healing operation via Ajeet Raina.
- Testing Swarm on Raspberry Pi – a screencast of Docker swarm and how it’s able to recover from failure of an ethernet interface. Continue reading
