Improve your Exoscale with VyOS
Exoscale is a European cloud provider focusing on simplicity and security. Its goal is to provide simple, scalable, and affordable cloud infrastructure services.
As an alternative to big, powerful but expensive virtual server providers, or hosting servers with limited support possibilities, Exoscale intends to provide an easy-to-use cloud solution with solid support. At the heart of Europe, Exoscale’s servers offer reduced latency and a great privacy protection afforded by Swiss data protection legislation. Realizing the fact that users want to benefit from a cloud server near their home, the Swiss startup has, therefore, changed its strategy to develop local servers and become a European player. For matters of latency, legality, but also trust — it is understood that users prefer to know their data near home.
Being an EU-based company, VyOS is an open-source network OS based on GNU/Linux that provides a unified management interface for all-functional traditional hardware routers. Designed to assume the role of a central point of secure traffic exchange in the cloud environment, or between the cloud and external resources, VyOS has powerful routing, VPN, and firewall functionalities. It’s well-known as the all-in-one networking solution for organizations that value flexibility and effectiveness.
Along with bare metal and hypervisors, it runs on cloud platforms that allow using the same OS and connecting your on-premises networks to cloud sites without the limitations and costs of vendor-specific VPN solutions. Additionally, you can build an inexpensive remote access VPN for your distant personnel.
Common use cases
Best connection and Support
Connect your Exoscale cloud infrastructure to remote sites using a wide range of supported by VyOS tunneling and encryption protocols: GRE, VXLAN, IPSec, IPIP, SIT. With VyOS you can establish a transparent but secure channel between your on-premises network and cloud, and between clouds using multiple tunneling protocols and strong encryption.
Reliability and Availability
Thanks to multiple Exoscale data centers across Europe, close to the main traffic exchange points, and dynamic traffic control functionality of VyOS, it is possible to build multi-homed redundant solutions, which makes all the data strongly available.
Confidentiality and Security
Provide secure access for road warrior users to private networks in Exoscale via VyOS VPN concentrator by choice of PPTP, L2TP, OpenVPN, or WireGuard. Establish the controlled access from the Internet; limit access to sensitive data or valuable resources with a stateful, zone-based firewall with source and destination NAT support.
Key Solution Benefits
- Flexible selection of VPN technologies, including DMVPN and modern WireGuard along with advanced dynamic routing support transforms VyOS into a centralized management hub for connecting cloud networking environments and bridging the gap between cloud-based Exoscale and your on-premises infrastructure.
- Build your own Virtual Private Cloud relying on privacy-minded IaaS fully compliant to regulations and standards. Combine services like Private Networking, Private Connect, and Dedicated Hypervisors to safely extend your existing on-premises infrastructure to a Hybrid Cloud at a fraction of the cost.
- Bring your own license (BYOL): In this scenario, Exoscale provides the pure IaaS according to the Exoscale end-user service agreements (EUSA); an image of the virtual VyOS instance can be provisioned via the Exoscale add-ons portfolio.
- With Exoscale, taking care of computing resources, and VyOS, providing connectivity for them, you avoid the issues associated with managing your own hardware, servers, or network devices.
- Bring more flexibility with Exoscale’s DNS features like Anycast DNS and VyOS to provide transparent access to your data in multiple sites, controlled by automation tools via APIs.
What Our Customers Say
As an ISP, one of our most important use cases is to be able to run full BGP tables without any issues. We have been using VyOS for this for years now and it has worked absolutely flawlessly. I don’t think we’ve ever had an issue with this, in fact.
We also use VyOS to host a couple of hundred server-networks and VyOS handles this with ease, even with some of our networks having crazy amounts of access-rules on them and often having consistently high throughput and burst rates.
Whenever we do experience issues or we simply have theoretical questions, it never feels like the support team is far away. We usually receive very quick and concise answers to our inquiries. It’s a very nice feeling to know that everyone that’s working on the VyOS project seem to be experts at it, it does a lot for our confidence in running VyOS as much as we do.
I reached out to the Vyos team with an issue regarding my subscription and it was promptly resolved.
I have been using vyos for the past 6 maybe 7 years, came from pfsense and never looked back.
The most important features for me:
- Ease of use
- I can configure everything from the command line and have made small modifications as time has gone by. I keep a script with the full command set applicable to my firewall.
- Setting up fq-codel is extremely intuitive and works flawlessly. I never had this kind of QoS with other solutions.
- I do miss a web interface to display stats and such, but I can live without it for the time being.
I have nothing but good things to say about the VyOS Support Engineers. I think Dmitriy has owned our last 2 ticket, and the rest of the Support Team have all helped out. Taras, Yuriy, Jose, (and I hope I didn’t miss anyone) are quick to contribute and answer any questions I have. I believe it was Taras that even updated the VyOS/VMware doc to clarify a few things that I needed help understanding.
My boss just recently purchased a VyOS Subscription, or license, because we were experiencing a couple bizarre issues during our VyOS refresh of 30+ routers. We were struggling due to a single “show-stopper” issue, month after month, and not able to proceed with the rest of the refresh project. My boss, Daya Rajaratnam, decided we needed to get Commercial Support and open proper tickets and also to show our support of the VyOS Team.
Just hours after our Support PO went thru, I opened a ticket. I gave it a relatively low priority so I would know what to expect with future tickets. Its was great to see a response from an Engineer in just a couple hours. Fast forward a few days and the root cause was identified, I had a simple workaround in place and working in production(and had learned a lot from other Support Engineers that had contributed). What a HUGE load off my back to have that issue resolved with a reliable fix. 5 Stars for service, knowledge, and going above and beyond. (Hell, can I give them 10 stars?).
4 days later I opened a second ticket about an unrelated VTI issue that had also been plaguing us for many months. The experience was equally impressive and I again had a simple and reliable workaround.
Working with this group was a real pleasure.
I use Vyos from the beginning and his predecessor Vyatta. I like platform because has own style of architecture and similar cli like cisco and juniper.
I use platform to make migration from site to site or hybrid migration with Cloud.
I’d like that platform has all ipv6 attribute and use it very much.
VyOS is the backbone of our company network since the early Vyatta 6.x days. It scales to meet your needs – from 256MB Alix-Board Low-Power Box for small branch offices to multi-processor rackmounted/virtualized network appliance – and is extremely easy to integrate with other systems like monitoring and configuration management. The excellent support from Sentrium turns it into a truely complete product that meets all our requirements.
I’m happy to recommend VyOS/Sentrium. We first began using VyOS several years ago; we maintain a VPN from cellular vendor network to our infrastructure. Since moving our infrastructure permanently to AWS, we decided to sign up for Sentrium’s professional product and service.
I recently ran into a peculiar issue with the IPSEC VPN after a version upgrade – Sentrium staff worked with me to resolve it, and were very prompt in providing information and resolution. We are running two instances, a primary and a backup, and both are working splendidly, with seamless failover.
Thank you for the prompt support. It is great to know that not only the product is a perfect fit for our needs, but also knowing that there is a professional support team we can rely on.
We use VYOS to connect distributed POPs to our data centers and provide secure Internet connectivity to the POPs.
I think you have a great product. Actually I like promoting your product to other customers and using it for demo purposes.
You are one of a kind today to support almost all network protocols.
You guys are great on support. Thank You.
We are very excited about VyOS and use it as part of our products. VyOS convinces as a complete product with REST API and Wireguard support. The support is very fast and extremely competent.
Easy to deploy
You can automate the deployment with your DevOps tools of choice, or you can deploy the image manually through the Exoscale console. Upgrade it to the latest version of VyOS and move the config to a freshly updated instance. You won’t need to reinstall and configure the appliance from scratch. The deployed VyOS appliance is ready to work with the network, thanks to the automatic configuration from Exoscale Meta-Data service.
Efficient and Versatile
Advanced routing capabilities, multi-protocol VPN, and a stateful firewall are but the tip of the iceberg.
- L2TP over IPsec
- WireGuard VPN Interface
Advanced Firewall and NAT:
- Zone-based firewall
- All types of source and destination NAT (one to one, one to many, many to many)
- BGP (IPv4 and IPv6)
- OSPF (v2 and v3)
- RIP and RIPng
- Policy-based routing
Join 160 businesses that that are already establishing successful virtualized network infrastructure with Exoscale and VyOS
Learn how we can improve your network while reducing the costs!