Cisco SD-WAN 006 - Service VPN Overview, Connected and Static Routes
Вставка
- Опубліковано 20 вер 2020
- In this video, we will discuss what the service VPN is, how it's used, configuring it and advertising connected and static routes.
- Наука та технологія
Thank you very much Rob for this wonderful series - fantastic job
Great Video Rob, been following your Viptela series hope to see more in-depth videos.
great stuff glad i found your channel.
Thanks for the vid man, amazing!!
Completed Lab 6, Thank you
Thanks a lot Rob
vSmart - is functioning comparable to the BGP-RR - fantastic conclusion. It's what popped into my mind - and then you spread the word. Thank you Rob
Can you pipe the outputs via 'sh int | tab' to have the table output. You should be able to use '| tab' on most shows.
For sub interface to work, you would need to place the physical into VPN 0. Next you place the sub-interfaces into VPN 1-511.
Yup, I did the lab and it works, per documentation, I guess the sub-interface on "vpn 1" requires "mtu 1492"
Rob,
Thaqnk you!, great content as usual. What is the screen notating program do you use please?
Ink2go, it's paid app, like $20 USD for a life time license.
@@RobRikerTechChannel Thank you Rob!
sub-interfaces does not work on vEdge-cloud. However, it does work on ISR4000 Series with sdwan image. It is limitation of vedge-cloud.
i.e vpn 1 , int ge0/2.13 -- will use dot1.q encapsulation of vlan 13
For sub interface to work, you would need to place the physical into VPN 0. Next you place the sub-interfaces into VPN 1-511.
Hi Rob, just a quick question, if I add connected/static route in VPN1 at vEdge1, the routes shows on vSmart as received but not sending, until I got another site's vEdgeX also got the same VPN1 build, is this because vSmart need to see the same VRF(VPNX) tunnel be established?
Yep, if you need/want static routes, you'll need to configure all sites necessary for the propagation to happen.
Another grea8 video. Please could you explain more as to how vSmart is receiving 4 routes from the peer 10.3.0.1 and sending 6 and receiving 2 routes from the peer 10.4.0.1 and sending 8 (video time at 29:45).
For every TLOC created in VPN0, by default you will advertise all known connected/static routes by default via OMP to vSmart. If you have 4 routes to advertise, and 2 TLOCs to send those routes via, then the vSmart will learn in each route twice, so a total of 8 route advertisements, 4 routes out 2 TLOCs equals 8 total route advertisements.
Hi Rob, thank you for the great videos. Can you please share your eve-topology too?
yeah, i will.
@@RobRikerTechChannel Thank you
Please Where??
@@RobRikerTechChannel Great video could you please share me this topology
Is there a section on TLOC-Extension?
Thanks Rob.. I have already joined the membership, but I have accessed only MPLS,INET and DC-SW config in the google drive. Where are other devices' initial configs ?? thanks.
That's all you get, you can mix and match to meet your lab needs.
@@RobRikerTechChannel I see during the video and I realized your sensible way. Thanks Rob !!
10mins in , regarding subinterfaces... I vaguely remember having to put the main interface (of the service VPN sub interfaces) into VPN 0 before it allowed the subinterfaces to actually work.
Give it a go. Let me know if that works for you.
The Dark Knight
Yeah, I discussed it a little further with Rob on twitter and my experience was with an ISR and not a vEdge, I assumed they would have been the same but it doesn’t sound like it. :)
Please share init config of switches and routers in text format. Does anybody have?
hi rob, what is the name of the software you are using for on screen writing?
Ink2Go.
thanks a lot
Rob, can you provide initial configs of switches and routers? I use your topology, but I prepare initial config by myself after every lab. Please share with me init configs.
Become a member, then you'll have access to the topology and initial configs for INET, MPLS, the other devices are configured during the videos.
@@RobRikerTechChannel I signed to your channel. I have access to the topology, but there is no init config.
@@MMLAB442 hey
please mr have you got the config ??
@@nabeehhn4090 I did initial config by view "show" command's outputs in every video
Should interfaces all be in their own VPN? What is the do's and dont's of putting multiple interfaces into a single VPN?
In most cases all interfaces in a single VPN unless you need segmentation.
@@RobRikerTechChannel Ah so like customer segmentation as we would do with VRFs and MPLS.
vEdges seem to be sending omp routes but not receiving any? where do I need to look?
I would start with vSmart.
@@RobRikerTechChannel This was it. vSmart needed a reboot.
Hello Sir,
How are you,
I like you channel and recomend for every one its a very best channel for SDWAN learning,
Sir if you don't mind could you shere this topology with me.
thank you very much.
CCIE # 47481
HCIE # 9339