Hyper-v, not Veeam related question..

[frankive]

Perpahs the wrong forum, but there are so many nice people here so I have to take a change to ask a question not directly aimed at Veeam

As a small MSP-we rent out VPS. We do this by a s small Hyper-V Failover cluster and a complicated firewall which is not multitenant so we cannot give the customer any control of the firewall.
We have looked at different cloud providers out-of-box solutions like Nutanix, OnCLoud etc. but it is pretty expensive since we are only hosting around 100-200 Vms.

What we like to build is a 2-3 node HCI storage spaces direct cluster with 10/25 Gbps backblone and then use a free firewall named PFSense for each customer/tenant .Its just a small VM which acts like a firewall between our internet WAN vlan and a internal lan for their customer. All tenantes are then isolated by vlan.

Are there any other MSP who does it the same way? How do you manage the firewalls for each tenants?

[nmdange]

Have you considered using the native SDN firewall/network virtualization that is part of Windows Server 2016? It is designed for this specific scenario.

[frankive]

is there any good blogs about his usecase?

[Mike Resseler]

https://blogs.technet.microsoft.com/net ... s2016-sdn/
https://blogs.technet.microsoft.com/win ... e-minutes/

Some of my friends referred to the above as good starts, and also said there is a great pluralsight course on this topic. I haven't followed it but it might be worth looking into it

Cheers
M/

[marcinbojko]

Also here: https://github.com/microsoft/sdn
But compared to other providers, SDN from MS is quite overcomplicated and hard to maintain.
There is really lack of good documentation (from SCVMM perspective). Running scripts can be a good thing when you begin you journey to SDN, but later it's just asking for a trouble.
Just look at scripts itself - you'll see the level of complication.

[frankive]

I guess I will end up in Azure