Re: SD-WAN | WAN Edger Router Link to LAN

zekebashi · ‎02-09-2021

Hello,

I am still new to Cisco SD-WAN and wanted to find out where does the Edge Router inside port connect to in the network? Meaning, would you connect the edge router's inside port to the Core switch(Core Layer) or DMZ switch)?

Thanks in advance.

Best, ~zK

Mohamed Alhenawy · ‎02-12-2021

Hi @zekebashi

You should connect the inside port of the edge router to core switch and create VPN services.

(example-1)

Create (VPN services -1) and this is will serve your LAN Parent , from core side you will configure trunk port and allow Vlans through it , from edge side you will assign the main interface which is connect to the core switch to VPN-1 and will create Sub-Interface for each vlan then you will get full reachability between them .

NOTE: This is Like router on stick in the traditional network , A sub-interface is a logical interface which is created by dividing one physical interface into multiple interfaces. However, the Parent Physical Interface is used for data transmission. Sub-Interface can be used for variety of Purpose, Layer3 Switch is preferred Router on a stick configuration due to Switch Backplane Bandwidth.

(example-2)

- Create (VPN services -1) and this is will serve your LAN Parent.

- Create template interface for the LAN-Parent interface .

- Assign the main interface which is connect to the core switch to VPN-1.

- Create IGP Template like OSPF and assign LAN-Parent interface .

- Configure core switch interface as Layer-3 then Run the IGP protocol such as OSPF , Redistribute connect and advertise your network.

NOTE: Don't forget to do default information originate in the ospf template

For DMZ you can create separate VPN Services and assign separate interface.