Onboarding vEdge issue

mohamedyare · ‎09-12-2023

Please bear with me if my questions seem basic, as I'm just starting to delve into this subject. I've successfully configured vManage, vBond, and vSmart. Currently, I'm in the process of onboarding the vEdge router, but I'm encountering an issue where the WAN Edge routers aren't appearing as registered.

I installed CARoot certificate on the vedge router and also activated vedge-cloud chassis number and token, under connection seems connection is stablished , however it seems DTLS overlay has not been setup.

some of show output are attached.

balaji.bandi · ‎09-12-2023

Is the vEDGE is behind NAT or FW ? do you have enough ports open to establish connection

check some ports requirement

https://www.cisco.com/c/dam/en/us/td/docs/solutions/CVD/SDWAN/sdwan-wan-edge-onboarding-deploy-guide-2020nov.pdf

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

mohamedyare · ‎09-12-2023

Thank you for your prompt replay Balaji.

I follow configuration steps and still getting DCONFAIL which is DTLS error

Kanan Huseynli · ‎09-12-2023

Hi,

"show control local-properties" clearly shows that your device does not have certificate for it.

Which certificate option did you choose for virtual devices from vmanage administration settings? If it is enterprise CA, you need to generate CSR and sign it with rootCA.

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

mohamedyare · ‎09-13-2023

Hi,

A CSR was generated from the vEdge router, assigned by the CA, and then uploaded the Identity Certificate back to the vEdge router; however, the status of the connection is showing 'teardown'.

Secondly, on the WAN Edge List, it displays a red cross for the status of the vEdge cloud.

it also showns that vEdge cloud device is required a device license:

If that is the issue, is there any way I can set up an SD-WAN lab without purchasing a license subscription?