Using Vyatta with SoftLayer Overview

Using Vyatta with SoftLayer Overview

The Brocade 5400 vRouter provides software-based virtual router, virtual firewall, and VPN functionality for Internet Protocol (IP) networks (IPv4 and IPv6)1. The following is information about the Brocade 5400 vRouter that you need to know when considering it on SoftLayer, deployed on a bare metal server as a dedicated firewall. It is:

  • Deployable in a High Availability (HA) cluster configuration
  • Configurable and customizable router and firewall
  • Available with interface speeds of 10 Gbps
  • Allows for custom routing of networks for spanning across SoftLayer datacenters and PoDs
  • Supports multiple VLANs regardless if in the public or private networks
  • Performs NAT
  • Can be used to create a site-to-site VPN [Internet Security Protocol (IPSec)] as well as SSL VPN tunnels, including OpenVPN
  • Can be used both on the private and public networks
  • Can define secuirty by zone or interface
  • Apply discrete firewall rule definitions to individual IP addresses or across entire user-defined zones
  • Mitigate SYN flood [Denial of Service (DoD)] attacks by using Transmission Control Protocol (TCP) SYN cookie functionality
  • Able to limit connections attempts on a per port basis with hold-down timers
  • Able to balck list specific IP address ranges, further reducing potential attacks to the network
  • Inspection of packets for VLAN-level protection
  • Ingress and egree firewall rules
  • Available firewall bandwidths - 100 Mbps, 1 Gbps, and 10 Gbps

There are also caveats of which you need to be aware:

  • The Brocade 5400 vRouter is not managed via the SoftLayer Web Portal; you must use either the Brocade 5400 vRouter https, secure shell (SSH) interface or the Gateway as a Service tool -
  • Customer-managed solution
  • Additional skill or training may be required to build and secure the Brocade vRouter for your complaince requirements
  • Additional set up and training may be required for more complex configurations
  • Multi-Brocade vRouter deployments are required for encryption between SoftLayer PoDs