-
Notifications
You must be signed in to change notification settings - Fork 231
Overview
Gatekeeper servers are the servers allocated at Vantage Points, and that enforce policies.
Grantor servers are the servers allocated close to the datacenter of the protected customer, and that make policy decisions and decapsulate the granted packets.
Internet exchanges (IXes), some cloud providers, and peering links are examples of vantage points.
Gatekeeper is an open source application in the DPDK framework. It is intended to be used by network operators of institutions, service and content providers, enterprise networks, etc. It is not intended to be used by individual Internet users, since it requires the privileges to be a BGP speaker to announce Gatekeeper-protected prefixes to be sent through Gatekeeper.
Gatekeeper servers and Grantor servers are both run using the gatekeeper executable, just with different configuration options as specified below.
If you are a student, researcher, or potential user of Gatekeeper and want to test it, see the page Experimenting with Gatekeeper.
To set up a full-scale Gatekeeper deployment, you will need access and resources to deploy Gatekeeper in a vantage point. You will also need the ability to announce Gatekeeper-protected prefixes to your services or hosts using a control plane tool like BIRD.
Some other useful information when choosing what hardware to use for Gatekeeper and how to set up the system: