Anapaya EDGE LAN integrations
Anapaya EDGE appliances can be integrated with the LAN in different ways, depending on the requirements of the organization and the chosen architecture.
Static routes
Static routes can be used to integrate the EDGE appliances with the LAN. This is a simple and straightforward way to route traffic between the EDGE appliances and the LAN. However, it requires manual configuration and maintenance, which can be cumbersome in larger deployments or when the network topology changes frequently.
Virtual Router Redundancy Protocol (VRRP)
The Virtual Router Redundancy Protocol (VRRP) can be used to provide redundancy and high availability for the EDGE appliances. VRRP allows multiple EDGE appliances to work together as a cluster, where one appliance acts as the master and the others as backups. If the master appliance fails, one of the backups takes over, ensuring that traffic continues to flow without interruption.
VRRP only takes care of the egress traffic, meaning that it only provides redundancy for the IP traffic from the LAN to the EDGE appliances. The ingress traffic from the SCION network to the EDGE appliances and the LAN can always be routed via both EDGE appliances.
Border Gateway Protocol (BGP)
The Border Gateway Protocol (BGP) can be used to establish a BGP session between the EDGE appliances and the LAN. BGP is a more complex protocol than VRRP, but it provides more flexibility and scalability for larger deployments. BGP allows the EDGE appliances to exchange routing information with the LAN and other networks, enabling more dynamic and efficient traffic management.
BGP can be used to steer ingress traffic from the SCION network to the EDGE appliances by advertising the appropriate routes to the EDGE. This allows the EDGE appliances to receive traffic from the SCION network based on the BGP routing decisions made by the LAN. On the other hand, egress traffic from the LAN to the SCION network can be influenced by the BGP routing policies configured in the LAN, allowing for more granular control over how traffic is routed out of the EDGE appliances to the SCION network.