AsterNOS-VPP | SONiC + VPP Software Router & Firewall NOS
Price range: $0.00 through $1,799.00 VAT excl.
AsterNOS-VPP is a SONiC-based network OS with a VPP data plane, turning x86 servers and Marvell OCTEON DPUs into line-rate routers and firewalls. Free x86 VM edition.
- SONiC control plane + VPP data plane — an open, software-defined router & firewall NOS running on ARM and x86
- Line-rate L3 routing — 2M RIB entries, BGP full routing tables & peering, OSPFv2/v3, ECMP/UCMP, VXLAN BGP-EVPN multihoming
- Carrier-grade IP services — NAT, CGNAT, MAP-T, PPPoE client/server, Multi-WAN policy routing for ISP and broadband edge
- Built-in security & VPN — IPsec and WireGuard tunnels, N-tuple wild-match ACL, DAI, IPSG, DHCP/ND snooping, storm control
- One ops model, switch to router — the same SONiC management (ZTP, Klish, gNMI, NetConf, RESTful API, uCentral) across switches and routers in an open ecosystem; NetFlow/IPFIX and Prometheus telemetry built in
- Flexible editions — free edition on x86 virtual machines (KVM/VMware ESXi) for evaluation, plus hardware-accelerated editions on Marvell OCTEON appliances (50G / 100G)
Open SONiC + VPP
Software-defined router & firewall on x86 and OCTEON DPUs — no vendor lock-in.
Line-Rate L3 at Scale
2M RIB, BGP full tables, OSPF, ECMP/UCMP and VXLAN BGP-EVPN.
Carrier Services Built In
NAT, CGNAT, MAP-T, PPPoE and Multi-WAN, secured with IPsec & WireGuard.
Free to Try, Ready to Scale
Run free on any x86 VM, then scale to 50G / 100G on OCTEON appliances.
AsterNOS-VPP is a SONiC-based network operating system
that pairs SONiC's proven, switch-grade control plane with VPP (Vector Packet Processing) as a software-defined, programmable data plane. Running on both ARM and x86 architectures, it transforms standard servers and merchant DPUs into next-generation routers and firewalls — without locking you into proprietary hardware.
Under the hood, AsterNOS-VPP substitutes the standard libsai.so with libsaivpp.so, translating SAI commands into VPP API calls so that packet forwarding executes on the DPU or CPU with high efficiency. The result is line-rate performance for the network functions that matter most: L3 routing, NAT, PPPoE and VPN — all managed through the same operational model network teams already use across Asterfusion switches and routers.
Open NOS with a software-defined data plane
A variant of the open-source SONiC ecosystem, AsterNOS-VPP keeps SONiC's containerized, Linux-kernel-based architecture and rich Layer-2/Layer-3 feature set, while VPP handles high-throughput forwarding. This delivers an open, disaggregated alternative to traditional fixed-function routers from Cisco, Arista and Dell.
Line-rate routing and rich Layer 3
AsterNOS-VPP supports line-rate L3 routing with 2M RIB entries, including BGP full routing tables and BGP/MP-BGP peering, OSPFv2/v3, policy-based routing, VRF, ECMP/UCMP and VXLAN BGP-EVPN with multihoming — ready for service-provider and data center edge roles.
Carrier-grade and broadband IP services
Built-in NAT, CGNAT and MAP-T let operators share public IPv4 addresses via large-scale NAPT and perform stateless IPv4-to-IPv6 translation. Integrated PPPoE client and server support authentication, billing and IP assignment, while Multi-WAN routing distributes traffic across multiple ISPs or paths by policy.
Security and VPN
Secure, encrypted connectivity is delivered through IPsec and WireGuard VPN, complemented by N-tuple wild-match ACLs, Dynamic ARP Inspection, IP Source Guard, DHCP/ND snooping and interface-based storm suppression for fine-grained, stateful traffic control.
High availability and automation
Carrier-class resilience is provided by MC-LAG, VRRP, BFD, Monitor Link and SLA tracking. As part of the SONiC ecosystem, AsterNOS-VPP inherits a consistent operations model — ZTP, Klish CLI, RESTful API (OpenStack-interoperable), gNMI, NetConf/YANG and uCentral — for NetDevOps-style automation.
Built-in observability
Streaming telemetry and monitoring are native: NetFlow/IPFIX for real-time flow analysis, a Prometheus Exporter for system and network metrics, SNMP v1/v2/v3, and SPAN/RSPAN/ERSPAN for deep packet visibility.
Flexible editions and deployment
AsterNOS-VPP is available as a free edition for x86 virtual machines (KVM or VMware ESXi, minimum 4 cores / 4GB RAM with DPDK-supported NICs) — ideal for evaluation, lab, and proof-of-concept. For production line-rate throughput, hardware-accelerated licensed editions run on Marvell OCTEON appliances: the E2 edition (OCTEON CN102, 50 Gbps) and the M3 edition (OCTEON CN103, 100 Gbps), licensed perpetually with an annual major-version upgrade subscription.
| Edition | Free x86 VM, Pro x86 VM, Pro CN102, Pro CN103 |
|---|
