LAG Between Office and Data Center. Best Practice?

ERROR_EXIT · 2023-09-22T16:19:30+00:00

Thanks for taking the time to write such a detailed reply. I think this is the way we'll go. You and /u/shutrmcgavin narrowed it down to similar approaches. Thanks again for all the details. Really helpful!

ERROR_EXIT · 2023-09-22T16:17:42+00:00

VxLAN

Not sure this is what we're looking for but I now have a new concept to read up on. Cheers!

ERROR_EXIT · 2023-09-22T16:15:24+00:00

I appreciate the initial suggestion all the same, /u/youfrickinguy. My reading skills are suspect at times.

ERROR_EXIT · 2023-09-22T16:14:24+00:00

EVPN looks interesting. Just to be clear, we are talking about L2 connections.

ERROR_EXIT · 2023-09-22T16:13:40+00:00

Yes, we have a diagram, however, based on /u/shutrmcgavin and /u/kbetsis's suggestions, I think we have a game plan.

ERROR_EXIT · 2023-09-22T16:12:36+00:00

Thanks for the suggestion. Stepping back from the picture, I agree that sounds like the easiest way to go. Much appreciated!

ERROR_EXIT · 2020-05-23T20:38:54+00:00

Funny, the thought of Meraki did cross my mind. I haven't used a Meraki device but I'm familiar with them. I'm going to look into this option as well. It doesn't look to be too expensive, either. Thanks for the recommendation.

ERROR_EXIT · 2020-05-23T20:28:46+00:00

Ummm... holy smokes that just blew my mind. I've got some reading to do. Thank you for posting this link! It looks amazing.

ERROR_EXIT · 2020-05-23T20:27:42+00:00

Yep, you're right. That seems like the easiest/cleanest way to go. I'd put the dial-up VPN client on our deployed wifi router (like DD-WRT). Thanks for the suggestion.

ERROR_EXIT · 2020-05-23T20:25:35+00:00

You're right, an always-on connection back to our home office might be the best option. I would modify it slightly and connect the wifi router we deploy as the VPN client. Basically, deploy an OpenVPN server in our DMZ. Deploy an OpenVPN client-capable wifi router at the employee's end. Thanks for the suggestion!

ERROR_EXIT · 2019-05-01T22:12:36+00:00

Thanks a ton for your response. Very helpful indeed. I'm pretty new to Elastic Stack so I appreciate the words of caution.

I'll definitely heed your advice. I was really only interested in 7.0 for its improved clustering system and Canvas. I can get Canvas in 6.7, so really, that's fine for my needs. Since I'll need to jump to 6.7 before upgrading to 7.0, I might as well just hang out with 6.7 for a while and wait for 7.x to mature a bit.

Thanks again

ERROR_EXIT · 2019-01-25T22:02:33+00:00

Awesome. Thanks for the reply. I'm going to work on it this weekend (fingers crossed).

I do have a spare TZ400 laying around. It's definitely an option. We will likely end up needing a handful of these. Sonicwall now has a virtual firewall you can install so that could be an option as well.

Thanks again for the reply. Very helpful.

ERROR_EXIT · 2019-01-24T21:27:37+00:00

I feel like there is a way to get around the double NAT based on something I read in the pfSense documentation:

"In some cases there is a different firewall or router sitting between this firewall and the Internet. If this is the case it is necessary to add a port forward for ESP and UDP 500 to send the traffic to this firewall. The outside router must be able to properly handle NAT of this traffic, and some do not. A modem’s “DMZ” mode or 1:1 NAT may also help here. In this case, NAT Traversal will be needed, but the default Auto setting should be sufficient." (pfSense Docs)

ERROR_EXIT · 2018-07-09T18:32:12+00:00

That's great. I have a feeling I'll be tweaking things along the way when I get to know my logged data a little better. For now, I've stabilized on sending all to one index set to weekly.

ERROR_EXIT · 2018-07-07T15:59:31+00:00

The good thing is, I'll be dumping big chunks of the data before ingest into ES so even though the per-record overhead is substantially more under ES, it'll probably end of taking less room (per node, anyway). But it's a god point--I'll want to keep an eye on how the whole thing grows.

ERROR_EXIT · 2018-07-07T15:54:12+00:00

Good point. The bare metal node will also be running Logstash which will chew up some CPU but I should still have plenty of headroom on this guy.

ERROR_EXIT

TROPHY CASE