Gateways FAQ

Can I provision my servers and cloud instances directly behind my Network Gateway?
What software is running on the network gateway device?
What is a Network Gateway device?
What benefits does a Network Gateway provide versus using the datacenter routers directly?
Who administers the Network Gateway device?
Can I provision my servers and cloud instances directly behind my Network Gateway?

Yes, it is possible to provision servers and cloud instances directly behind a Network Gateway device. When ordering new systems it is possible to specify the VLAN to which the systems are assigned. By selecting a VLAN that is associated with a Network Gateway device, the new systems will be provisioned behind that Network Gateway device.

Provisioning in this manner requires additional configuration work on the customer side to configure the Network Gateway so that our provisioning system can communicate with the hosts. Refer to this FAQ for a list of IP ranges used by our network services.

先頭に戻る
What software is running on the network gateway device?

Currently, the Network Gateway devices are provisioned with the Vyatta Subscription Edition operating system.

先頭に戻る
What is a Network Gateway device?

The Network Gateway device places a customer configurable routing device in front of specific customer configured VLANs. The Network Gateway device becomes the first network hop, instead of a SoftLayer Frontend Customer Router (FCR) or Backend Customer Router (BCR).

It is also possible to provision multiple Network Gateway devices together to perform a high-availability group.

The following terminology will be helpful in reviewing this document.

Associated

Associating a VLAN with a Network Gateway links the VLAN with a Network Gateway but does NOT route the VLAN to the Network Gateway. A VLAN can be associated with one Network Gateway at a time.

Bypassed

VLANs which are in Bypass state with respect to a Network Gateway are being serviced directly by their associated datacenter router. The Network Gateway device is not involved.

Frontend/Backend Customer Router

Network devices operated by the datacenter for purposes of routing traffic to/from customer VLANs. The FCR and BCR are controlled by the datacenter.

Network Gateway

Customer controlled device which receives traffic from the FCR/BCR for specific configured VLANs and processes that traffic based on rules determined by the customer.

Routed

VLANs which are in Routed state with respect to a Network Gateway have their traffic passing through that Gateway.

VLAN

A VLAN is a collection of IP subnets (addresses) and datacenter switch ports connected to devices.

先頭に戻る
What benefits does a Network Gateway provide versus using the datacenter routers directly?

The primary benefit of using a Network Gateway is control. A Network Gateway provides the customer expanded control over features and functionality, including:

  • Terminate public IPSec VPN tunnels on the Network Gateway device.
  • NAT based configurations where “private-network only” servers are reached via NAT on the Network Gateway.
  • Custom routing designs adjustable on the fly by your administration team.
  • Run extra diagnostic commands such as traffic monitoring on the Network Gateway.
  • Firewall capabilities in addition to other benefits

Please keep in mind that a Network Gateway is not a DDOS mitigation tool.

先頭に戻る
Who administers the Network Gateway device?

Network Gateways are administered directly by the customer. The customer has the ability to login directly to the device and make extensive configurations for servicing their network traffic. The customer is responsible for maintaining proper backups of the device's configuration files.

先頭に戻る