Arista EOS Central - Category

Deploy a Transit VPC with vEOS using IGW (Public IP)

Posted on November 30, 2018 by Fan Yang

Deploy a Transit VPC with vEOS using IGW (Public IP) fanyang@arista.com This document focuses on the steps to build a Transit VPC solution using Internet Gateway (IGW) vs. VPC peering. There are certain advantages to use IGW as transport. This eliminate the limits on how many VPC peering can be created and gives customer a larger scale deployment. It also enables spoke VPCs to communicate with each other directly with one hop, which can potentially save data cost. Besides, even it’s public ip to public ip communication, if both IPs belong to AWS, AWS will route the traffic through...
Continue reading →

Provisioning Cloud Vision Portal on AWS

Posted on August 21, 2018 by shalin

Introduction This article demonstrates provisioning CloudVision Portal on AWS. With the release of CVP version 2018.x and upgrade of CVP platform to CentoOS 7.4, Cloud Vision Portal can be installed on CentOs servers with an RPM based script. This article specifically covers provisioning of CVP on the AWS EC2 Cloud platform. With CVP running on AWS users can easily manage AWS/OnPrem EOS instances from AWS and run analysis on CVP Telemetry/Compliance information with other AWS services and tools. Pre-Requisites 1) AWS account with appropriate privileges to create and access EC2 instances, DNS and NTP services. 2) Access to Arista.com Software...
Continue reading →

Arista Any Cloud Platform – vEOS Router in Azure Deployment Guide

Posted on August 20, 2018 by Tom Ferranti

Introduction In this document, we will demonstrate the deployment of Arista’s vEOS Router in Microsoft Azure. A vEOS Router can be leveraged to implement various Azure architectures such as the transit-edge or hub-spoke architecture. This particular document provides a step-by-step guide to deploy vEOS Router in a transit-edge architecture in the Azure public cloud. Overview Arista’s private and public cloud infrastructure both offer significant efficiencies that make it a compelling option for workload placement. We have proven this in the private cloud with a simple yet scalable Spine/Leaf topology utilizing industry standard protocols across all of Arista switches. With...
Continue reading →

Arista Any Cloud Platform – VM Migration

Posted on July 2, 2018 by Tom Ferranti

Introduction In many scenarios, resources are provisioned in the public cloud as a service, without a need to connect to a private on-prem environment. Situations will arise where connectivity is required between a public and private environment that conflict in IP space. This article will showcase how to leverage vEOS Router in AWS to establish connectivity between a VPC and a private on-prem datacenter that conflict in IP space. In this particular example, there are a hand-full of VMs that need to be migrated from AWS to a private environment. Objective Establish connectivity between the AWS VPC and the private environment. Once connectivity is established,...
Continue reading →

Arista Any Cloud Platform – Destination NAT (IP Anycast) in vEOS Router

Posted on May 30, 2018 by vipul

Overview Purpose of this post is to test and validate Destination NAT (IP Anycast) support on vEOS Router. We built the following topology in AWS to validate this setup: Here is the link to the EOS Central article that can be referenced to help build this topology – https://eos.arista.com/arista-any-cloud-platform-hybrid-cloud-veos-router-in-aws-deployment-guide/ Objectives We hope to accomplish the following in this article: Create a Loopback interface on vRouter-1a and vRouter-1b with an IP address of 1.1.1.1/32 Advertise 1.1.1.1/32 as an equal cost route to vRouter-Transit. At any given moment vRouter-Transit could take the path to vRouter-1a or vRouter-1b. In this setup we utilized BGP without...
Continue reading →

Arista Any Cloud Platform – Security Use Case

Posted on January 9, 2018 by Tom Ferranti

Introduction In this document we will demonstrate how to effectively leverage Arista’s vEOS Router in a Transit – Edge VPC model to satisfy a common security use case. As most companies look to move into the public cloud space, security vulnerabilities have gained more focus than ever before. Objective Provide a centralized security model within an AWS region, which will allow for ease of visibility and control. Deploying separate AWS Internet Gateways in every VPC, increases complexity and vulnerabilities in the public cloud space. Prerequisites This document assumes that you have the following architecture deployed: A Transit – Edge VPC topology deployed...
Continue reading →

Arista Any Cloud Platform – vEOS Router in AWS Deployment Guide

Posted on October 23, 2017 by vipul

Introduction In this document we demonstrate deployment of Arista’s vEOS Router in Amazon Web Service (AWS). Sections of this document have been set forth based on order of execution, hence it is pertinent that the order is maintained for successful deployment Arista vEOS Router. Overview Arista’s private and public cloud infrastructure both offer significant efficiencies that make it a compelling option for workload placement. We have proven this in the private cloud with a simple yet scalable Spine/Leaf topology utilizing industry standard protocols across all of Arista switches. With Any Cloud, Arista is extending two proven software platforms, EOS and CloudVision,...
Continue reading →

Arista Hybrid Cloud – IPSec between vEOS Router and Linux

Posted on September 25, 2017 by Adhip Gupta

This document provides the steps and running configuration for setting up an IPsec connection between vEOS Router and a Linux Compute Node instance in AWS. On the Linux Compute Node Install Strongswan You might have to enable epel repository for yum on AWS. (https://aws.amazon.com/premiumsupport/knowledge-center/ec2-enable-epel/) yum install strongswan Create a GRE tunnel on the machine ip tunnel add tun0 mode gre remote <ip addr on veos et> local <ip addr on client eth> ip link set tun0 up ip addr add <ip addr> dev tun0 ip route add <prefix> dev tun0 In /etc/strongswan/ipsec.conf, add the configuration for the Ipsec...
Continue reading →

Running vEOS on ESXi 5.5

Posted on July 9, 2014 by coreyhines

What is vEOS? Arista Networks vEOS is a software only version of the EOS network operating system. vEOS is meant to be run in a virtual machine environment. vEOS is useful for feature testing and especially for development of scripts and extensions. vEOS can be run on many different virtualization platforms like Virtual Box, VMware Fusion or Workstation as well as ESXi. Arista Networks has previously published how to documentation for running vEOS on other virtualization platforms and this document will extend that documentation to ESXi. What is ESXi? VMware ESXi is a server virtualization platform that supports hypervisor clustering,...
Continue reading →

Category : Hybrid Cloud