1 00:00:06,720 --> 00:00:07,553 - Let's go over 2 00:00:07,553 --> 00:00:11,420 What is VXLAN and what are network overlays. 3 00:00:11,420 --> 00:00:14,800 Now, many organizations use this concept 4 00:00:14,800 --> 00:00:17,510 of an overlay network model, 5 00:00:17,510 --> 00:00:20,690 basically deploying an overlay network 6 00:00:20,690 --> 00:00:24,020 allows you to tunnel layer through packets 7 00:00:24,020 --> 00:00:25,860 with different Encapsulations. 8 00:00:25,860 --> 00:00:26,693 Right. 9 00:00:26,693 --> 00:00:27,526 And basically, 10 00:00:27,526 --> 00:00:29,120 you're doing this layer two tunneling 11 00:00:29,120 --> 00:00:31,870 over a layer three network. 12 00:00:31,870 --> 00:00:36,350 So this overlay network uses quote unquote tunnels 13 00:00:36,350 --> 00:00:39,840 to carry traffic across the layer three fabric. 14 00:00:39,840 --> 00:00:43,460 And these solutions needs to allow the underlay 15 00:00:43,460 --> 00:00:46,980 to a separate network flows between different tenants 16 00:00:46,980 --> 00:00:50,470 or administrative domains. 17 00:00:50,470 --> 00:00:53,010 Now, the solution also needs to switch packets 18 00:00:53,010 --> 00:00:55,620 within the same layer two broadcast domain 19 00:00:55,620 --> 00:00:57,810 and also route traffic between 20 00:00:57,810 --> 00:01:01,830 layer three broadcast domains and provide IP separations. 21 00:01:01,830 --> 00:01:04,020 And traditionally, this is actually done 22 00:01:04,020 --> 00:01:06,620 via things like virtual routing and forwarding 23 00:01:06,620 --> 00:01:07,613 or VRFs 24 00:01:07,613 --> 00:01:10,570 But nowadays, a lot of organizations actually 25 00:01:10,570 --> 00:01:15,523 are using VXLAN to provide this type of functionality. 26 00:01:16,360 --> 00:01:19,530 Now, there have been many multiple tunnel mechanisms 27 00:01:19,530 --> 00:01:22,170 as I mentioned now, these are some 28 00:01:22,170 --> 00:01:25,690 of the most popular, you know, historically 29 00:01:25,690 --> 00:01:26,740 we 30 00:01:26,740 --> 00:01:28,470 I just mentioned VXLAN which stands 31 00:01:28,470 --> 00:01:30,730 for Virtual Extensible LAN. 32 00:01:30,730 --> 00:01:33,460 And you also have the Network Visualization 33 00:01:33,460 --> 00:01:37,730 with Generic Routing Encapsulation, or NVGRE. 34 00:01:37,730 --> 00:01:41,150 You also have the Stateless Transport Tunneling protocol 35 00:01:41,150 --> 00:01:42,510 or STT. 36 00:01:42,510 --> 00:01:45,400 And the Generic Network Visualization Encapsulation 37 00:01:45,400 --> 00:01:47,980 or G E N E V. 38 00:01:47,980 --> 00:01:48,813 Right? 39 00:01:48,813 --> 00:01:49,920 So GENEV. 40 00:01:49,920 --> 00:01:54,670 Now the use of UDP in VXLANS basically enable routers 41 00:01:54,670 --> 00:01:56,780 and network infrastructure devices to apply 42 00:01:56,780 --> 00:02:00,050 hashing algorithms on the outer UDP header to 43 00:02:00,050 --> 00:02:03,810 basically low balance the network traffic. 44 00:02:03,810 --> 00:02:05,919 The network traffic that is actually writing 45 00:02:05,919 --> 00:02:08,370 the, you know the overline network. 46 00:02:08,370 --> 00:02:09,920 It's actually load balance 47 00:02:09,920 --> 00:02:13,030 over multiple links using equal-cost load balancing 48 00:02:13,030 --> 00:02:16,993 or equal cost multi-path routing ECMP. 49 00:02:18,090 --> 00:02:20,480 Now this introduces a little bit better solution 50 00:02:20,480 --> 00:02:23,110 compared to the traditional network designs. 51 00:02:23,110 --> 00:02:24,510 In traditional network designs, 52 00:02:24,510 --> 00:02:27,140 access switches connect to the distribution switches 53 00:02:27,140 --> 00:02:29,680 and this actually cause redundant links 54 00:02:29,680 --> 00:02:32,520 to block due to spanning tree. 55 00:02:32,520 --> 00:02:37,200 And this case a VXLAN uses an identifier 56 00:02:37,200 --> 00:02:40,590 or a tag that represents a logical segment 57 00:02:40,590 --> 00:02:43,900 that is called a VXLAN network identifier, 58 00:02:43,900 --> 00:02:46,360 or a VNID. 59 00:02:46,360 --> 00:02:50,010 Now the logical segment is identified with a VNID 60 00:02:50,010 --> 00:02:53,600 and it's basically a layer two broadcast domain 61 00:02:53,600 --> 00:02:56,230 that is tunneled over the VTEP tunnels. 62 00:02:56,230 --> 00:02:59,430 Or the VTEP tunnel. 63 00:02:59,430 --> 00:03:01,320 Now here, I'm actually showing an example 64 00:03:01,320 --> 00:03:04,860 of an overlay network that provides a layer two 65 00:03:04,860 --> 00:03:07,070 you know, tunneling capabilities. 66 00:03:07,070 --> 00:03:08,870 And in this other example, 67 00:03:08,870 --> 00:03:10,420 I'm showing an overlay network 68 00:03:10,420 --> 00:03:13,793 that provides layer three routing capabilities.