IPROUTE
asked on
Setup Cisco SD-WAN
If I want to setup SD-WAN between HQ & Branch Office, what are the requirements in terms of devices and licensing. Firstly, we need to setup POC by ourselves for demo purposes.
Both HQ and branch have 100 Mbps broadband internet connection. HQ also have dedicated leased for business use. As hardware is concerned, currently we got only ESXI hosts at both sites.
Any suggestions and ideas are welcomed.
Thanks
Both HQ and branch have 100 Mbps broadband internet connection. HQ also have dedicated leased for business use. As hardware is concerned, currently we got only ESXI hosts at both sites.
Any suggestions and ideas are welcomed.
Thanks
ASKER
Currently, we have expensive MPLS circuits setup between main and remote offices. We want to eliminate or reduce bandwidth and bring SD-WAN to enable full mesh IPSec Topology for non-critical business traffic.
We have a got 100Mbps ADSL connections that will be terminated on vEdge routers.
We have a got 100Mbps ADSL connections that will be terminated on vEdge routers.
Again, it isn't that simple to spin off a design. If you are doing this as a cost cutting measure, I'd suggest you look at Meraki or Fortinet's SDW. Cisco has three offerings - Viptela (Expensive), DMVPN (Build it soup to nuts yourself), Meraki (Network centric, low security). Fortinet is going to reduce cost and give the advantage of baked in security.
Beyond this, if you are looking to build a BOM/Design, then I'm happy to consult or you could try engaging the vendor directly.
Beyond this, if you are looking to build a BOM/Design, then I'm happy to consult or you could try engaging the vendor directly.
ASKER
Ok, is it possible for you to help us setup the POC Lab
I have;
Two ESXI hosts at main and remote office
- 100 Mbps Broadband Internet connection at remote office
- 1 DIA behind firewall and 1x100 Mbps broadband connection at main office.
We want to setup controllers and vEdge at main office and vEdge at Remote office.
I have;
Two ESXI hosts at main and remote office
- 100 Mbps Broadband Internet connection at remote office
- 1 DIA behind firewall and 1x100 Mbps broadband connection at main office.
We want to setup controllers and vEdge at main office and vEdge at Remote office.
ASKER
I've attached our lab setup.
We are planning to install three controllers and vedge at main office on vmware esxi host.
Each vedge router will have two interfaces LAN and WAN ( connected to PPPoE ADSL)
If Controllers are placed behind firewall, which IPs exactly I need to NAT ? Do we need seperate public addresses for all three controllers ?
Do we need to NAT system-ip of controllers ?
Please suggest your thoughts on this.
sd-wan.jpg
We are planning to install three controllers and vedge at main office on vmware esxi host.
Each vedge router will have two interfaces LAN and WAN ( connected to PPPoE ADSL)
If Controllers are placed behind firewall, which IPs exactly I need to NAT ? Do we need seperate public addresses for all three controllers ?
Do we need to NAT system-ip of controllers ?
Please suggest your thoughts on this.
sd-wan.jpg
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Really, need more info to give a better answer.