cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
593
Views
6
Helpful
5
Replies

cisco SDWAN tunnel

avdheshkumar
Level 1
Level 1

is it possible to create sdwan tunnel on a transport without having controll connection through it.

2 Accepted Solutions

Accepted Solutions

Hi,

yes, "max-control connections 0" under tunnel interface is the command that you need. Command tells to router not to create control connections over interfaces, but create BFD towards routers.

 

Tech tip

Deployment C requires the use of max-control-connections 0 under the MPLS tunnel interface, which tells the WAN Edge router that the TLOC is not expected to have control connections. The MPLS TLOC is advertised via the control connection on the Internet side and data plane connections can still form with other WAN Edge routers over the MPLS transport.

https://www.cisco.com/c/en/us/td/docs/solutions/CVD/SDWAN/cisco-sdwan-design-guide.html#CiscoCloudHostedDeploymentrecommended

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

View solution in original post

Command is

Sdwan interface <interface name> tunnel-interface max-control connection <number>

Here we can specify the interface and config max control connection to be 0.

This prevent transport interface from established any control connection

https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/ha-scaling/ios-xe-17/high-availability-book-xe/m-high-availability-and-scaling.html#concept_mh1_tfz_4lb

MHM

View solution in original post

5 Replies 5

I will more check' but I think yes 

You can have two or more transport interface' use one to connect to vsmart/vmanage and use other to connect as data tunnel to other vedge.

MHM

avdheshkumar
Level 1
Level 1

yes, theoretically it should, i am looking for some documention or if someone has achieved this.

Command is

Sdwan interface <interface name> tunnel-interface max-control connection <number>

Here we can specify the interface and config max control connection to be 0.

This prevent transport interface from established any control connection

https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/ha-scaling/ios-xe-17/high-availability-book-xe/m-high-availability-and-scaling.html#concept_mh1_tfz_4lb

MHM

Hi,

yes, "max-control connections 0" under tunnel interface is the command that you need. Command tells to router not to create control connections over interfaces, but create BFD towards routers.

 

Tech tip

Deployment C requires the use of max-control-connections 0 under the MPLS tunnel interface, which tells the WAN Edge router that the TLOC is not expected to have control connections. The MPLS TLOC is advertised via the control connection on the Internet side and data plane connections can still form with other WAN Edge routers over the MPLS transport.

https://www.cisco.com/c/en/us/td/docs/solutions/CVD/SDWAN/cisco-sdwan-design-guide.html#CiscoCloudHostedDeploymentrecommended

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

avdheshkumar
Level 1
Level 1

i am sure you all will be knowing this but just wanted to update...

for all the interfaces assigned private IP and public color (edge device placed behind a firewall) it is must to create control connections for BFD and ipsec tunnel to come up. without the control connections vManage will not know the public IP used for NAT.

TLOC colour is used to decide which IP to use for tunnel creation.

 

regards,