Layer 2 Ethernet transport over OpenVPN

Layer 2 Ethernet transport over OpenVPN

One of the things I used to deploy frequently at my previous position was transport for other ISPs and businesses. Since MPLS support is in its infancy on the Imagestream platform, and was yet to be deployed at the time, this is what I came up with. The configuration is quite simple, setup an OpenVPN tunnel across your network, and bridge a vlan or interface to it. Simple, right?

Here is one side of the config…

!
interface Tunnel100
 description Customer Transit
 tunnel mode openvpn
 tunnel options --passtos
 tunnel source 10.1.32.1 9876
 tunnel destination 10.12.54.1 9876
 tunnel key 8df4234bc8e
 ip pim sparce-mode
 bridge-group 100 spanning-disabled
!
interface Ethernet4
 description Customer Transit Interface
 bridge-group 100 spanning-disabled
!

Mirroring this configuration on the remote side will complete the transport… If you have any questions or problems implementing this, please leave a command I can attempt to assist you.

Tags :
comments powered by Disqus

Related Posts

HSRP, VRRPd, and GLBP Compared

HSRP, VRRPd, and GLBP Compared

In the world of first hop redundancy, we have plenty of choices. In order to make the right decision for your network you should know the basics regarding all three. The following …

Read More
Setting up VOIP lab

Setting up VOIP lab

This week I’ve started setting up a VOIP lab to explore the technology and when I’m done, I plan to integrate it into my home network. So far I’ve purchased the following for my …

Read More
Securing SSH against bruteforce attacks

Securing SSH against bruteforce attacks

This is one of the methods I’ve used in the past to secure a Linux host against brute force ssh attacks. While its not a perfect method, it does a good job of preventing 100s of …

Read More