Select the firewall zone you want to restrict traffic to from an overlay. If this occurs, backup interfaces are added so that the service level objective can be met. Traffic is routed through the primary interfaces exclusively unless the service level thresholds for Loss, Latency, or Jitter have been exceeded. You can specify when you choose Orchestrator to go to Secondary by selecting Down or Not Meeting Service Levels. +Secondary: Click +Secondary to enable secondary interfaces. Each appliance has a maximum number of tunnels that it can support, and using Cross Connect increases the number of tunnels created.Īdd Backup if Primary Are: Specifies when the system should use the Backup interfaces. The interfaces are grayed out until moved into the Primary or Backup boxes.Ĭross Connect allows you to define tunnels built between each interface label. Move the desired interfaces between Primary and Backup. If the primary interface is unavailable or not meeting the desired Service Level Objectives configured, the Backup interfaces are used. First, you assign for your traffic to go to the Primary interfaces. You can select which WAN interfaces you want to use for each device to connect to the SD-WAN. You can add and remove a region or view the status of each overlay within a selected region. Regional Mesh and Regional Hub & Spoke: To streamline the number of tunnels created between groups of appliances that are geographically dispersed, you can assign appliances to Regions and select Regional Mesh or Regional Hub & Spoke. To configure hubs, select the Hubs link at the top of the page. Hubs in different regions mesh with each other to support regional routing. If you choose Hub & Spoke, any appliance set as a hub will serve as a hub in any overlay applied to it. Hub & Spoke: Hubs are used to build tunnels in Hub & Spoke networks and route traffic between regions. Mesh: Choose Mesh if you want to make a local network. You can choose between the following types of topology: Select the type of topology you want to apply to your overlay and network. For more information about Regions, refer to the help on the tab. You can modify, remove, or edit overlay settings for a selected region by expanding the list at the right-top of the Overlay Configuration window. To view your associated region within your overlay, select the Regions icon in the Region column in the overlay summary table. To apply default ACLs or create your own, select Add Rule in the Associate ACL window. Select the Match field and choose the match criteria from the menu.Ĭlick the Edit icon next to the ACL field. If you want to edit the default overlay or create a new overlay, enter the new name of the overlay in the Name field. You can also select any icon on the Business Intent Overlay page and the selected editor or dialog box opens.Ĭomplete the following steps to configure your overlay. You can begin to configure or modify a default overlay in the Overlay column. If the software determines that the traffic is not destined for the internet, it refers to the WAN Links & Bonding Policy configuration and forwards traffic accordingly within the overlay. The matched traffic is then analyzed against the overlay’s Internet Traffic configuration and forwarded within the fabric, or broken out to the internet based on the preferred policy order. Orchestrator matches traffic to an ACL, progressing down the ordered priority list of overlays until it identifies the first one that matches. Click Save and Apply Changes to Overlays when you are ready to apply the changes and click Cancel if you want to delete the changes. The pending configuration updates are indicated by an orange box around the edited item. You can also temporarily save your changes before officially applying those changes to your overlay. You can select any link in the table and the Overlay Configuration dialog box launches. The overlay summary table is used for easy comparison of values between your various configured overlays. By default, there are several predefined overlays matching a range of traffic within your network. Use the Business Intent Overlays (BIOs) tab to create separate, logical networks that are individually customized to your applications and requirements within your network. Configuration > Overlays & Security > Business Intent Overlays
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |