> For the complete documentation index, see [llms.txt](https://ccie.nyquist.eu/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://ccie.nyquist.eu/network-architecture/sd-wan.md). # SD WAN The enterprise version of Cisco SD WAN is based on Viptela and it is an overlay WAN infrastructure. ## SD WAN components ### vManage NMS This component is a single pane of glass NMS GUI that is used to configure and manage the SD WAN solution ### vSmart Controller When a SD WAN router comes online it authenticates with the vSmart Controller. The vSmart Controller establishes a DTLS tunnel to each router. On top of these tunnels it establishes OMP (Overlay Management Protocol) neighborships with each SD WAN router. OMP is a proprietary routing protocol that can advertise routes, next hops, keys and polisy information needed to maintain the SD WAN fabric. Using OMP the vSmart Controller learns routes from SD WAN routers and calculates the best routes to network destinations. Then it advertises reachability information to all SD WAN routers in the fabric. The vSmart Controller will also translate the policies defined in vManage NMS into a format supported by SD WAN routers and will push it to the devices. ### SD WAN routers The SD WAN routers establish DTLS tunnels to vSmart Controllers and then form OMP neighborships with them. They also establish IPsec sessions with other SD-WAN routers in the fabric. The SD WAN routers will make site-local decisions regarding routing, HA, interfaces, ARP management and ACLs. There are 2 types of SD WAN routers: * **vEdge** - original Viptela implementation * **cEdge** - Viptela software integrated into Cisco IOS-XE ### vBond Orchestrator The vBond Orchestrator authenticates the vSmart controllers and the SD WAN routers and orchestrates the connectivity between them. A vBond orchestrator has the following components: * **Control plane connections**: Each vBond orcherstrator has a DTLS tunnel with each vSmart controller. It also uses DTLS to communicate with SD WAN routers to allow them to connect to teh SD-WAN fabric. * **NAT traversal**: With this features the vBond Orchestrator facilitates connectivity between routers and vSmart controllers that are behind NAT * **Load Balancing**: When multiple vSmart Controllers are used, the vBond Orchestrator automatically performs load balancing of SD WAN routers across the vSmart controllers. ### vAnalytics This is an optional component that provides analytics and service assurance. ## Cloud OnRamp Cloud OnRamp is a set of functionalities that facilitates optimal connectivity for cloud SaaS applications or cloud IaaS environments. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://ccie.nyquist.eu/network-architecture/sd-wan.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.