14 Mar
2019
14 Mar
'19
5:55 a.m.
Hi Rob & Tony, thank you for your answers,
Le 13/03/2019 à 20:33, Rob Janssen a écrit :
However, when your router system is capable of running
ampr-ripd or
another solution for
IPIP tunnels (e.g. the scripts for RouterOS or the recent solution for
Juniper) I think it is always
a good idea to install one of them.
Our main routers are Debian VMs, so ampr-ripd is possible.
The problem is that our initial setup will be quite complex, with lots
of network interfaces : AMPRNet 44.190/Internet, AMPRNet 44.168/HamNet,
public IP Internet (one or two for redundancy), tunnel to Vultr for BGP,
cross-data center VPN (one or two), plus one OpenVPN virtual interface
for each of our VPN-connected remote locations, and one interface to our
"old" network using 10.0.0.0 private addressing (because migration of
the whole network won't be doable in one-shot). Routing and firewalling
of all that is not a trivial task ;-) So I'd like to avoid IPIP tunnels,
at least for the first step... But I'll keep it in mind, in order to be
able to add it later.
Our main IP BlockList for the BGP interface is ready (based on
iplists.firehol.org). I'll start migrating some machines on 44.190 ASAP,
and see what happens, HI ;-)
73 de TK1BI