How to configure SDWAN: Basic connection
=====================
https://www.reddit.com/r/paloaltonetworks/comments/1dhfv1j/panos_sdwan_routing_tables/
Lab:
in this lab, we only have Ethernet type link, no MPLS or Microwave/Radio type. In a mix network, tunnels only form with same type link.
Panorma version: 11.2.10-h3
sd_wan plugin version 3.3.2
1. Define zones
2. Add Security Policy Pre-Rules
4. Add Shared Tags
1. Define SD-WAN interface profile
Network > SD-WAN interface profile
2. Configure SDWAN interface
Network > Interfaces
3. Specify SDWAN devices
Panorama > SD-WAN > Devices
Specify router-id and lookback interface during adding devices, no need to pre-create lookback interfaces.
Configure VPN Clusters
Panorama > SD-WAN > VPN Clusters
VPN Access Pool
Panorama > SD-WAN > VPN Clusters > VPN Address Pool
Result
After commit and push, what are added to the hub and branches devices?
Hub:
1. Four tunnel interfaces to each branch when each site has two ISPs.
2. One SDWAN DIA interface sdwan.901, and one SDWAN interface to each branch.
3. four VPN tunnels to each branch.
4. SDWAN interfaces and tunnel interfaces are assigned to pre-defined zones
Branch1
1. Tunnel interfaces
2. SDWAN interfaces, one is DIA, another one is to the Hub
3. Four VPN tunnels to the Hub
4. Zones and interfaces
5. Routing
Comments
Post a Comment