Post on 30-Dec-2021
transcript
Cisco SD-WAN Component
< 8’
Be Up to date
With UpToEight
STEP A:
Authentication With DTLS
Connection
1
2
Information on New vEdge
2
3
Send IP Address of vSmart and vManage
DTL
S
DTLS
DTL
S
< 8’
Be Up to date
With UpToEight
STEP B:
DTLS
send Full file of vEdge Configuration if available
Authentication With DTLS
Connection
1
2DTLS
< 8’
Be Up to date
With UpToEight
STEP c:
OMP Session Established and Exchanging of route
Authentication With DTLS
Connection
1
2
< 8’
Be Up to date
With UpToEight
STEP D:
IPsec Tunnel Established
BFD Session Established
Hey Guys, hope you are doing well.
In this video I will explain about Cisco
SD-WAN components and show you
how these components communicate
to each other.
Click/2nd Slide: (40 Sec)
When new vEdge wants to be added
into SD-WAN fabric, It can be explained
in several steps.
Let’s see what they are:
Click / In step A as first step : new
vEdge has DTLS connection with vBond
for authentication.
Click / After that vbond has two DTLS
connections with VManage and VSmart
for informing new vedge add to SD-
WAN fabric
Click / at the end, vbond sends Vsmart
and Vmanage IP addresses.
In first glance you can see all these
connections are secured via DTLS
protocol based on UDP
Click / 3rd Slide: (14 Sec)
Click/In step B, vEdge starts DTLS connection
with Vmanage for Authentication as it got
vManage IP address in Step A.
So now, Click/ vmanage sends configuration file
to vEdge.
Click:/4th Slide: (20 Sec)
Click/In STEP C : vEdge has DTLS connection with
Vsmart for authentication
And after that, click/ vEdge and vSmart
establishes OMP session and exchanging routes.
OMP or Overlay management protocol is to
similar dynamic routing protocol for exchanging
routes .
Click/5th Slide: (18 Sec)
Click/In last Step After exchanging routes
Database with OMP , vEdge establishes IPsec
tunnel to another vEdge.
Click/During this period, we also can see BFD
Session is established.
and as you know BFD is used to guarantee
link reliability.