The successful Infrastructure as a Service (IaaS) cloud providers (for example, Amazon) carefully hide the implementation details, for obvious reasons. Design guides published by various networking vendors usually use VLAN-based approach or hypervisor-based firewalls. Hierarchical VPLS combined with Q-in-Q encapsulation or Provider Backbone Bridging (PBB) would be ideal technologies if you want to implement per-tenant Layer 2 domains; MPLS/VPN would be the technology to use if you need Layer 3 isolation. Unfortunately, major networking vendors haven't started combining their data center and service provider expertise yet; anyone trying to build very-large-scale infrastructure cloud service is still on their own.
Have a question for Ivan Pepelnjak? Send an e-mail to firstname.lastname@example.org.
Dig Deeper on Telecommunication networking
Related Q&A from Ivan Pepelnjak
Telecom networking expert Ivan Pepelnjak details the similarities and differences between Infrastructure as a Service (IaaS) and multi-tenant ... Continue Reading
Telecom networking expert Ivan Pepelnjak breaks down the speed, bandwidth and security benefits of moving from a simple cable Internet connection to ... Continue Reading
IP expert Ivan Pepelnjak lays out several imperfect-but-workable approaches to building a Provider Backbone Bridging (PBB) network without spanning ... Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.