VyOS on KVM
KVM is a full virtualization solution (able to run unmodified guest OS images) for Linux on x86 hardware containing virtualization extensions (Intel VT or AMD-V). It consists of an open-source loadable module for the Linux kernel that provides the core virtualization infrastructure and allows the creation of emulated/virtualized hardware, which can be used to boot virtual machines. KVM is the most popular hypervisor for service providers running the OnApp Cloud management platform.
Modern hypervisors typically support hybrid virtualization: hardware-assisted when possible and failover to software-only for older chipsets.
KVM is categorized as a type-2 hypervisor, meaning that it runs within a host operating system and supports only Linux as its host OS.
Its paravirtualization functionality allows the hypervisor to provide a guest virtual machine access to certain physical hardware including disks, NICs, and video adapters. This flexibility helps you create the ideal virtual solution for you and your client’s requirements.
Virtualization powers the running of multiple virtual machines, each potentially with a different OS, on a single physical machine. With KVM, you can use the multiple virtual machines running unmodified Linux images. Each virtual machine has private virtualized hardware: a network card, disk, graphics adapter etc.
The advantages of VMs over physical machines
Improved I.T. responsiveness and productivity. Provisioning virtual machines can be automated and made available in minutes.
More efficient use of computer resources. The consolidation of virtual machines onto fewer physical machines results in less physical resources and therefore better efficiency.
Cost-saving. The saving comes in the form of reduced energy bills as a result of lower cooling and power requirements.
Features and use cases
VyOS is an open-source network operating system based on Debian GNU/Linux that provides software-based network routing, firewall, and VPN functionality. In version 1.2., VyOS switched its routing engine to FRRouting, which makes it an ideal and cost-effective solution for large enterprises, SMBs, network service providers, system integrators, private cloud providers, advanced users and home labs.
VyOS supports the Kernel-Based Virtual Machine (KVM) hypervisor on Linux by providing a prebuilt Linux KVM image with a number of Linux KVM-specific modifications and optimizations.
As a virtual router, VyOS allows you to have a separate network for all of your KVM virtual machines and route its traffic through your normal private network to the internet. With a virtual router, you are able to configure an unlimited number of routed sub-networks for your KVM virtual environment with as little as two virtual network adapters and extensive use of VLANs.
VyOS includes drivers and other modules required for the best performance and dynamic hardware reconfiguration in KVM environments. In addition, VyOS doesn’t need per-instance and per-core licensing, meaning you can scale your installations without worrying about additional charges.
Being focused on routing, VyOS offers its users access to enterprise-grade functionality such as powerful traffic filtration, flows analysis, HA topologies, IPsec, OpenVPN and NAT.
To ensure your the continuity of your business, we offer enterprise support and services provided by a team of certified network engineers. Documentation with detailed explanations covering all software features is available online 24/7.
What Our Customers Say
As an ISP, one of our most important use cases is to be able to run full BGP tables without any issues. We have been using VyOS for this for years now and it has worked absolutely flawlessly. I don’t think we’ve ever had an issue with this, in fact.
We also use VyOS to host a couple of hundred server-networks and VyOS handles this with ease, even with some of our networks having crazy amounts of access-rules on them and often having consistently high throughput and burst rates.
Whenever we do experience issues or we simply have theoretical questions, it never feels like the support team is far away. We usually receive very quick and concise answers to our inquiries. It’s a very nice feeling to know that everyone that’s working on the VyOS project seem to be experts at it, it does a lot for our confidence in running VyOS as much as we do.
I reached out to the Vyos team with an issue regarding my subscription and it was promptly resolved.
I have been using vyos for the past 6 maybe 7 years, came from pfsense and never looked back.
The most important features for me:
- Ease of use
- I can configure everything from the command line and have made small modifications as time has gone by. I keep a script with the full command set applicable to my firewall.
- Setting up fq-codel is extremely intuitive and works flawlessly. I never had this kind of QoS with other solutions.
- I do miss a web interface to display stats and such, but I can live without it for the time being.
I have nothing but good things to say about the VyOS Support Engineers. I think Dmitriy has owned our last 2 ticket, and the rest of the Support Team have all helped out. Taras, Yuriy, Jose, (and I hope I didn’t miss anyone) are quick to contribute and answer any questions I have. I believe it was Taras that even updated the VyOS/VMware doc to clarify a few things that I needed help understanding.
My boss just recently purchased a VyOS Subscription, or license, because we were experiencing a couple bizarre issues during our VyOS refresh of 30+ routers. We were struggling due to a single “show-stopper” issue, month after month, and not able to proceed with the rest of the refresh project. My boss, Daya Rajaratnam, decided we needed to get Commercial Support and open proper tickets and also to show our support of the VyOS Team.
Just hours after our Support PO went thru, I opened a ticket. I gave it a relatively low priority so I would know what to expect with future tickets. Its was great to see a response from an Engineer in just a couple hours. Fast forward a few days and the root cause was identified, I had a simple workaround in place and working in production(and had learned a lot from other Support Engineers that had contributed). What a HUGE load off my back to have that issue resolved with a reliable fix. 5 Stars for service, knowledge, and going above and beyond. (Hell, can I give them 10 stars?).
4 days later I opened a second ticket about an unrelated VTI issue that had also been plaguing us for many months. The experience was equally impressive and I again had a simple and reliable workaround.
Working with this group was a real pleasure.
I use Vyos from the beginning and his predecessor Vyatta. I like platform because has own style of architecture and similar cli like cisco and juniper.
I use platform to make migration from site to site or hybrid migration with Cloud.
I’d like that platform has all ipv6 attribute and use it very much.
VyOS is the backbone of our company network since the early Vyatta 6.x days. It scales to meet your needs – from 256MB Alix-Board Low-Power Box for small branch offices to multi-processor rackmounted/virtualized network appliance – and is extremely easy to integrate with other systems like monitoring and configuration management. The excellent support from Sentrium turns it into a truely complete product that meets all our requirements.
I’m happy to recommend VyOS/Sentrium. We first began using VyOS several years ago; we maintain a VPN from cellular vendor network to our infrastructure. Since moving our infrastructure permanently to AWS, we decided to sign up for Sentrium’s professional product and service.
I recently ran into a peculiar issue with the IPSEC VPN after a version upgrade – Sentrium staff worked with me to resolve it, and were very prompt in providing information and resolution. We are running two instances, a primary and a backup, and both are working splendidly, with seamless failover.
Thank you for the prompt support. It is great to know that not only the product is a perfect fit for our needs, but also knowing that there is a professional support team we can rely on.
We use VYOS to connect distributed POPs to our data centers and provide secure Internet connectivity to the POPs.
I think you have a great product. Actually I like promoting your product to other customers and using it for demo purposes.
You are one of a kind today to support almost all network protocols.
You guys are great on support. Thank You.
We are very excited about VyOS and use it as part of our products. VyOS convinces as a complete product with REST API and Wireguard support. The support is very fast and extremely competent.
KVM and VyOS help to deliver a perfect virtualization solution.
Here are the main benefits of the solution:
- Fully Open-Source Highly Customizable Operating System.
- Advanced Routing and Networking services: DHCP server and relay, DNS forwarding, and Web Proxy.
- QoS and policy-based routing allow ensuring optimal handling of the traffic flows. Support of advanced firewall and NAT.
- Reliable Connection by establishing controlled access to your private and public networks.
- Increased availability and reliability of routing paths via automatic routers redundancy on an IP subnetwork by applying the VRRP.
- Configurable Environment by flexible adaptation to any network topology and required extent functionality.
Join 160 businesses that that are already establishing successful virtualized network infrastructure with KVM and VyOS
Learn how we can improve your network while reducing the costs!