Zscaler Internet Access – Client Connector Forwarding Modes

The cloud has fostered the evolution of traditional connectivity models to improve the user and application experience. Security is becoming a growing concern as traditional perimeters are disappearing and a Zero Trust approach is essential in today’s security architectures.

(more…)

Accessing the Cloud

Cisco SD-WAN Policies Introduction

I want to share with you a summary of the key points in SD-WAN Policies, their definition and implementation, to build a flexible and adaptable architecture to the needs of end-users and applications.

(more…)

SD-WAN – Why is it becoming more and more relevant?

As you know, there has been a huge increase in the use of Software as a Service (SaaS) and Infrastructure as a Service (IaaS) offerings. This has made WAN become the main protagonist to achieve the new technology trends in the industry:

(more…)

Cisco ACI – Management In-band

This post covers a non-best practice design for the Management Network in Cisco ACI (Application Centric Infrastructure). The implementation of Management In-band instead of the recommended Management Out-Of-Band (OOB). An OOB network increases the odds that you will be able to access the devices in the event that the fabric is experiencing production issues and is unavailable.

(more…)

EVPN/MPLS vs VPLS

The aim of this post is to show a brief comparison of some key points for EVPN/MPLS and VPLS. You can see the details in the table below.

(more…)

Becoming a CCIE: What I have learnt

I would like to share my experience of becoming CCIE Routing and Switching v5 certified. It is kind of a “tradition” to do it and I think it can be very helpful to other people pursuing the same goal. Different points of view were very positive for me to get well prepared technically and psychologically for the day of the exam.

(more…)

NAT: IPsec DMVPN and Internet Access – Review NAT Deployment scenarios

This post describes different deployment scenarios where Network Address Translation (NAT) is implemented with IPsec DMVPN.

(more…)