Cisco SDWAN: No control connection but need tunnel between TLOC
No control connection but need tunnel between TLOC
Some of the design requirement where customer wants IPsec tunnels between the TLOCs using restrict option but they don't want to setup control connection with the SDWAN controllers. This has been asked many times. we can achieve this with the configuration on the feature template that will be used for the specific TLOC interface.
Fig 1.1- Cisco SDWAN Control Connections
Let's take an example , Lets us suppose we have a requirement which says my TLOC color MPLS create a tunnel with other sites MPLS interfaces but we don't want my MPLS create a control connection with the sdwan controllers. Although this is not a recommended design but sometimes we have multiple control connections and we don't want this specific color to have control connection.
Step 1: Go to Cisco SDWAN >>> Configuration >> Templates as shown below
Step 2: now click on Feature template and create a new interface feature template as below
Feature Template >>>> Cisco VPN Interface Ethernet , Give name to the template and go to the Tunnel and configure for "Maximum control connections = 0"
Step 3: Rest all configurations are same as you did for your other office using TLOC MPLS. Now import this interface feature template into your device template and implement. This will help you no to create any control connection with the controllers but you still can have TLOC tunnels with other sites.
- Finding the Right SD-WAN Vendor for Your Business
- The Evolution: Exploring the Origins of SD-WAN discussions
- Discover the Power of Multitenancy with Versa SDWAN!
- Introduction to Silver-Peak SDWAN Solution
- Introduction to VeloCloud SD-WAN Solution
- Introduction to Palo Alto's Prisma (CloudGenix) SDWAN
- Introduction to Fortinet SDWAN
