Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
190
Views
0
Helpful
1
Replies

SD-WAN Dataplane Tunnels

Boyan Sotirov
Level 1
Level 1

‎05-11-2024 07:38 AM

It was brought to my attention from a customer where redcently deployed Cisco SD-WAN infrastructure. 

So, they've started a traceroute from a local LAN segment at the center location, to a remote site LAN segment. Both of initiating and receiving hosts are logically behind the SD-WAN fabric and the traffic passes through it. What they observe is that the penultimate hop in the output of the traceroute is the WAN address of the Edge router. 

Now, looking at the configs that the vManager has deployed on the Edge, I could observe the following:

1. The WAN address is configured on interface which is assigned to VPN0

2. There's a Tunnel interface for that particular VPN service, which is configured with "ip unnumbered" borrowing the address from the WAN interface in VPN0. 

Given the above, it looks obvious why we observe that behaviour. The question I was asked though was... is this behaviour of the SD-WAN Edge router configurable? Can we change this logic?

0 Helpful
1 Reply 1

Kanan Huseynli
VIP
VIP

‎05-11-2024 08:23 AM

Hi,

Indeed, router public WAN IP is shown in traceroute. So, this is expected behavior.

I don't think that there is way to disable it, why and how it in reality happens - good question, will check in lab for details.

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

0 Helpful
Customers Also Viewed These Support Documents