NCE Fabric

Links

• iMaster NCE Fabric

• Huawei DCN: пять сценариев построения сети ЦОД

• Huawei NCE Fabric Documentation

• Huawei NCE Fabric Full Documentation

• Huawei: настройка VXLAN фабрики

• Run CE12800/NE40E in EVE-NG

• Run NE40, CE12800 in EVE-NG

• CloudEngine 12800 V200R020C10 Configuration Guide - VXLAN

Terminology

• NVE(Network Virtualization Edge)

• NVO3(Network Virtualisation over Layer 3)

• VPC (Virtual Private Cloud)

• SFC (Service Function Chain)

Service function chains (SFCs)

An SFC is a series of ordered service functions (SFs). Data flows pass through the SFs for check and processing. SFs include firewalls, IPsec nodes, NAT nodes, and web application firewalls (WAFs).

• Firewall: is deployed at the network border to control network access based on policies.

• IPsec node: connects to IPsec VPN services through VPNs and encrypts data transmitted over the Internet to ensure data transmission security.

• NAT node: provides the IP address translation service to map private IP address segments of servers to a public IP address, so that multiple servers can use the same public IP address to access the Internet.

• WAF: provides security protection for web applications, and detects or blocks threats such as SQL injection and XSS attacks. This reduces the risks of service interruption and data interception or tampering caused by web application security issues.

PBR (Policy based routing)

if the SFC function is used at the application layer, you need to determine the traffic diversion technology to use, policy-based routing (PBR) or network service header (NSH) technology.

• service classifier (SC)

• service forward forwarders (SFFs)

• service function path (SFP)