Integrating SRX in Svc Provider Network (Routing and Multi-tenancy Considerations)
Service Providers networks are always have complex requirements of multi-tenancy, routing & security and pose challenges to network architects. In this blog I will write about SRX integration in Svc Provider Network while highlighting methodologies how to handle challenges of implementing security features with multi-tenancy and routing consideration.
REFERENCE TOPOLOGY
Devices have been classified into following segments based on their role:-
- Remote Customer Network (consist of Customer PCs connected to Provide Edge through Customer Edge).
- Provider Network (Consist of Provider Edge Routers and Provider Back Bone Rout
- Data Center Network (Consist of Internet Firewall and Server inside Data Center directly connected with Internet Firewall).
- Internet Edge (Consist of Internet Router connected with Internet Firewall hence providing internet access to Customer Networks connected with Data Center through provider network).
Traffic flow and security requirements are as under:-
- Customer 1 Network (PC-1) requires access to Server-1 installed in Data Center and to Public DNS Server reachable via Internet Edge Router.
- Continue reading