Ben,
Besides the service VRF's, where they may be configuring MP-BGP, they are using the VRF's to force traffic through devices. Not as relevant for the transparent devices which can use VLANs to force the flows, but more applicable for the load balancers. As Garth mentioned, I have configured designs where the VRF's are used to force security policies with firewalls between them. Also allows you to control routing to partner networks without touching the local routing tables of the devices.
-ryan
-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of Ram Hispren Shummoogum
Sent: Thursday, October 21, 2010 11:05 AM
To: ccielab_at_groupstudy.com
Subject: VRF in data center.(OT)
Hi:
I am looking for full config examples that talk about inter-vrf routing in DC.
The service pattern doc at Cisco web site seems imcomplete and all over the place.
Ex: If I have a vrf for my app server and a vrf for my DB server with transparent FW in between.(sandwich VDC approach)
APP Srv---L3 Router(VDC2)----Trans-FW------L3 Router(VDC1). The DC service pattern doc shows the L3s in differnet VRF.
I think they should be in the same VRF.
How the L3 Router-VDC1 will reach the DB which is in a different VRF?
They don't talk about route leaking or MBGP. I am not sure if there is another way to do this in DC.
Sorry for the OT.
Thanks
Ben
Blogs and organic groups at http://www.ccie.net
Received on Thu Oct 21 2010 - 15:42:26 ART
This archive was generated by hypermail 2.2.0 : Mon Nov 01 2010 - 06:42:06 ART