05-02-2022 03:43 PM
Hi sdwan-lovers,
Suppose local site has 2 internet channels (ISP A and B), but remote has only one (ISP C). Normally, 2 IPSec are established between sites: A-C and B-C.
If ISP A has 100mbps, but B has 10mbps, we normally need to enforce local routes to go over ISP A to reach remote site. In traditional network ,it is very easy just by manipulating routing protocol that run over tunnels (gre/ dmvpn etc).
In SD-WAN it seems no way to it with routing, we need to use local-tloc set, but it becomes more complicated and complex when number of sites are many and different number of transport internet channels are used on sites (one has 1 , another has 2 , the 3rd has three isp channels).
How do you manage policy when number of sites is more and number of channels per site is different? Especially, when you use both prefered/ backup paths for some traffic and ECMP with AAR for specific traffic (voice/video)?
If would be better to hear from those who did this type of jobs in production.
Thanks.
05-03-2022 03:38 AM
Watch this videos and you are going to see that in SDWAN is actually eaiser to do even though is more complicate to understand. Pay attention on video 2, minute 2:24 when it create the TLOC and add both Links (Colors) into TLOC.
05-03-2022 12:07 PM
Hi Flavio,
unfortunately, these videos are totally unrelated to my case.
In videos there are 2 tunnels :inet and mpls and each has separate ipsec tunnel.
In mycase, on site has 2 internet and another has 1 internet. Since, remote site has 1 internet (i.e one TLOC) control policy does not help -> tunnel destination is the same.
regards,
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide