09-02-2020 09:54 AM - edited 09-02-2020 09:55 AM
Hi everybody,
I am looking into Viptela SDN WAN for our network, I stumbled upon this youtube about Viptela SDN WAN, at 33:20, it says if vEdge does not have internet connectivity to vBond, then we can not deploy Viptela SD WAN. Is it true?
https://www.youtube.com/watch?v=ZiJnWFoaJe8
Thanks and have a good day!!
Solved! Go to Solution.
09-02-2020 06:04 PM
Hi,
in normal design you should have 1:1 NAT for controllers so that devices in internet can access controllers. In addition to, all routers should reach vbond over internet so that vbond can discover their public/private IP addresses.
But it is not "must" option actually. Assume topology where controllers sit in your private DataCenter. And you want to deploy sdwan for wan routers over MPLS (private underlay). In this case, you actually, don't need access to vbond over internet. If you note private (actual) IP address of vbond in all configurations , it will work. No need for NAT and public address and access over internet. But if you will have router in internet it will not be able reach vbond and other controllers, due to lack of NAT.
HTH,
09-02-2020 06:04 PM
Hi,
in normal design you should have 1:1 NAT for controllers so that devices in internet can access controllers. In addition to, all routers should reach vbond over internet so that vbond can discover their public/private IP addresses.
But it is not "must" option actually. Assume topology where controllers sit in your private DataCenter. And you want to deploy sdwan for wan routers over MPLS (private underlay). In this case, you actually, don't need access to vbond over internet. If you note private (actual) IP address of vbond in all configurations , it will work. No need for NAT and public address and access over internet. But if you will have router in internet it will not be able reach vbond and other controllers, due to lack of NAT.
HTH,
09-06-2020 08:09 AM
You mean that Vbond can have Private IP address?
If I am not mistaken then Vbond should have public IP address.
09-07-2020 06:19 AM
vBond itself does not check whether IP address is RFC1918 (private) or not. Technically, yes, you may use private address and no nat for vbond. But as I noted above, it is OK unless you have only private addresses on routers/other controllers. If you have router (vedge or cedge) and that has internet connection, then you need nat for controllers.
09-07-2020 11:57 PM
Hi Kanan
I was facing same issue, If your controllers after the FW ? Then you need to do it 1:1 NAT and enjoy :)
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide