View Categories

Service Gateway – Service Provider (SG-SP)

Purpose and Functionality #

The multi-tenant Service Gateway Service Provider (SG-SP) serves as bridge between the customer’s network and the cloud service, providing seamless integration and secure communication. Deployed within the service provider’s infrastructure as a centralized cluster, any Cisco router running IOS-XE can act as Service Gateway. It supports multi-tenant environments (VRF’s), enabling service providers to deliver solutions to multiple customers efficiently.

For each customer, the service provider utilizes their IP-VPN backbone to extend the cloud service to one or multiple sites within the customer’s IP-VPN network. The SG-SP is positioned within the network traffic flow, integrating smoothly with existing LAN and WLAN infrastructures from any vendor, ensuring flexibility and compatibility across diverse setups.

Deployment Models #

  1. Service Provider Customers:
    • The SG-SP is deployed in a centralized cluster within the service provider’s infrastructure.
    • Designed to support multi-tenant capabilities, enabling scalability and efficient resource allocation.
    • Service providers use their IP-VPN networks or SD-WAN services to connect customer networks to their designated instances in the SG-SP cluster.

Security and Redundancy #

  • Encrypted Communication:
    Communication between the cloud service and the SG-SP is secured via an encrypted FlexVPN tunnel.
  • Redundancy Options:
    Supports hot standby for failover and load balancing to optimize performance.

Key Features #

  1. Policy-Based Routing:
    • Ensures efficient traffic management based on predefined policies.
  2. Dynamic Segmentation:
    • Utilizes SGT/SXP tunnels and SGT-to-IP mapping for secure and dynamic segmentation of network traffic.
  3. Logical Independence:
    • Each SG-SP instance operates within an isolated framework using VRF (Virtual Routing and Forwarding) to ensure logical and operational separation.

Scalability and Flexibility #

  • Service Provider Deployments:
    Multi-tenant capabilities ensure scalability, and centralized management optimizes resource utilization for service providers.

 

ServiceGateway Router Support Matrix #

The table below lists the Cisco router series that are verified and fully compatible with the SignIn ServiceGateway integration. The specified license levels are required to enable the features utilized by the integration.

Router Series Required License Feature Utilization Support Status
Cisco ISR 1100 Series Security (SEC/K9) + AppX Cisco TrustSec (CTS), PBR/ePBR, NBAR, IPSec (FlexVPN), NAT, BGP, VRF ✅ Supported
Cisco ISR 4400 Series Security (SEC/K9) + AppX Cisco TrustSec (CTS), PBR/ePBR, NBAR, IPSec (FlexVPN), NAT, BGP, VRF ✅ Supported
Cisco Catalyst 8100 Series DNA Essentials Cisco TrustSec (CTS), PBR/ePBR, NBAR, IPSec (FlexVPN), NAT, BGP, VRF ✅ Supported
Cisco Catalyst 8200 Series DNA Essentials Cisco TrustSec (CTS), PBR/ePBR, NBAR, IPSec (FlexVPN), NAT, BGP, VRF ✅ Supported
Cisco Catalyst 8300 Series DNA Essentials Cisco TrustSec (CTS), PBR/ePBR, NBAR, IPSec (FlexVPN), NAT, BGP, VRF ✅ Supported
Cisco Catalyst 8400 Series DNA Essentials Cisco TrustSec (CTS), PBR/ePBR, NBAR, IPSec (FlexVPN), NAT, BGP, VRF ✅ Supported
Cisco Catalyst 8500 Series DNA Essentials Cisco TrustSec (CTS), PBR/ePBR, NBAR, IPSec (FlexVPN), NAT, BGP, VRF ✅ Supported

Note #

  • Require Cisco IOS XE 17.3.8a or later.

Netgraph
Powered by  GDPR Cookie Compliance
Cookie Overview

What are cookies?

Cookies are small text files consisting of letters and numbers. These are sent from Netgraph Sverige AB or our partners' web servers and stored on your device (for example, computer or mobile). They can be stored in two different ways.

Session cookies are temporary cookies that disappear when you close your browser or app.
Persistent cookies are cookies that remain on your computer until you delete them or until they expire.

Different types of cookies

Both our website and others, such as Facebook or Google, may place cookies on your computer when you visit this website. Cookies from the website you are visiting are called first-party cookies and cookies from other websites are called third-party cookies.

Other files, similar to cookies, are web beacons and similar technologies. Web beacons are small transparent graphic images that may be contained in emails we send to you.

Why do we use cookies?

We use cookies to make your visit to our website as enjoyable as possible, and to improve it even more. However, we do not store IP numbers or similar personal data about you.

Functionality cookies improve your experience

We store cookies about the pages you have visited to make your experience on our website as smooth as possible. For example, we can prevent you from seeing a pop-up window more than once.

Analytics cookies help us to make our website better

We use cookies to collect aggregate analytical information about how you use the site, such as statistics on our most popular pages. With the information we get, we can improve our web and our offers.

Deleting cookies

Your browser or device usually allows you to set which cookies can be stored on your computer. For example, you can choose to block all cookies, only accept cookies from the website you are visiting or delete all cookies when you close your browser. Look under Settings.

Questions?

Do you have any questions about how we use cookies? You can always reach Netgraph Sverige AB's data protection officer at info@netgraph.se

This information was updated on August 26, 2024.