Interesting situation and question that I am hoping someone can answer or at least provide guidance to. Two companies are merging and need to get WAAS solutions to communicate with one another.
Is it possible to have optimization flowing between 2x WAEs where each is managed by a separate CM?
I believe if auto-discovery is used, the appliances should be able to see one another and optimization should be achieved. If anyone has specific guidance or experience here I'd appreciate it. Thanks.
Solved! Go to Solution.
I looked into this a few years ago. If the two CM's and their policies are compatible, it should technically work. But Cisco would not, I think they said, support this configuration.
Yes they will accelerate just fine, my company merged with another company and all my WAN accelerators peered with all of their WAN accelerators with no problem. If there is a firewall between your network and theirs, and it is an ASA, make sure to put"inspect WAAS" in the global policy. If it is a non-cisco firewall, you have to turn off stateful inspection. If there is a firewall, and you do not do this, it will cause huge delays in communication.
So, as long as there is no firewall issue, the only issues you will experience will be with encrypted traffic. Encrypted domain SMB traffic will cause errors on your devices about the other domain. Any SSL certificates you have added in your CM will not be in their WAE devices.
I looked into this a few years ago. If the two CM's and their policies are compatible, it should technically work. But Cisco would not, I think they said, support this configuration.
Yes they will accelerate just fine, my company merged with another company and all my WAN accelerators peered with all of their WAN accelerators with no problem. If there is a firewall between your network and theirs, and it is an ASA, make sure to put"inspect WAAS" in the global policy. If it is a non-cisco firewall, you have to turn off stateful inspection. If there is a firewall, and you do not do this, it will cause huge delays in communication.
So, as long as there is no firewall issue, the only issues you will experience will be with encrypted traffic. Encrypted domain SMB traffic will cause errors on your devices about the other domain. Any SSL certificates you have added in your CM will not be in their WAE devices.
So I've been doing a lot of validation work on this one over the last few months:
Thanks.