↪️
ccie.nyquist.eu
  • Table of Contents
  • Layer 2 Technologies
    • Ethernet Switching
      • L2 Switch Operations
      • Spanning Tree
        • 802.1d – STP
        • 802.1w – RSTP
        • 802.1s – MSTP
      • VTP 101
      • Private VLANs
      • VLANs
      • EtherChannel 101
    • Layer 2 WAN Protocols
      • HDLC
        • HDLC 101
      • PPP
        • PPP 101
        • PPP Authentication - PAP
        • PPP Authentication – CHAP
        • PPP Authentication – EAP
        • PPP Multilink
        • PPPoFR – PPP over Frame Relay
        • PPPoE – PPP over Ethernet
      • Frame Relay
        • Frame Relay 101
        • Frame Relay 102
        • Frame Relay Encapsulations – IETF vs Cisco
        • Multilink Frame Relay
        • Frame Relay Switching
        • Routing over Frame Relay
      • Bridging
        • Bridging on a router
        • MTU 101
    • Wireless
      • Wireless Principles
      • Wireless Implementations
      • Wireless Roaming
      • Wireless Authentication
        • WPA2 PSK
        • WPA2 802.1X
  • IPv4
    • IPv4 Addressing
      • Backup Interfaces
      • FHRP 101
      • DHCP 101
      • DNS 101
      • ARP 101
      • IPv4 101
      • Tunnel Interfaces
        • GRE Tunnels
      • BFD – Bidirectional Forwarding Detection
    • IPv4 Routing
      • How the routing table is built
        • How CEF works
        • Routing Order of Operations
        • NSF – Non Stop Forwarding
      • RIP
        • RIP 101
      • EIGRP
        • EIGRP 101
        • EIGRP Metric
        • More EIGRP Features
      • OSPF
        • OSPF 101
        • OSPF Areas
        • OSPF LSAs
        • OSPF Mechanics
      • IS-IS
        • IS-IS 101
        • IS-IS Mechanics – CLNP
      • BGP
        • BGP 101
        • BGP Attributes
        • More BGP
      • Route Redistribution
      • Policy based Routing
      • PfR 101 – Perfromance Routing
      • ODR
  • IPv6
    • IPv6-101
    • IPv6 Routing
    • Interconnecting IPv6 and IPv4
  • MPLS
    • MPLS 101
    • MPLS L3 VPN
  • Multicast
    • Multicast 101
    • PIM 101
    • IGMP 101
    • Inter Domain Multicast
    • IPv6 Multicast
    • Multicast features on switches
  • Security
    • NAT 101
    • NAT for Overlapping Networks
    • ACLs 101
    • ACLs 102
    • Cisco IOS Firewall
    • Zone Based Firewall
    • AAA 101
    • Controlling CLI Access
    • Control Plane
    • Switch Security
      • Switchport Traffic Control
      • Switchport Port Security
      • DHCP Snooping and DAI
      • 802.1x
      • Switch ACLs
    • IPSec VPN 101
      • IKE / ISAKMP 101
      • IPSEC Crypto Maps 101
      • IPSEC VTI 101
      • DMVPN 101
    • EAP 101
  • Network Services
    • NTP 101
    • HTTP 101
    • File Transfer 101 – TFTP & FTP
    • WCCP 101
  • QoS
    • QoS 101
    • Classification and Marking
    • Congestion Management
      • Legacy Congestion Management
      • SPD – Selective Packet Discard
      • CBWFQ
      • IP RTP Priority
    • Congestion Avoidance – WRED
    • Policing and Shaping
      • CAR 101
    • Compression and LFI
      • Header and Payload Compression
      • LFI for MultiLink PPP
    • Frame Relay QoS
      • Per VC Frame Relay QoS
    • RSVP 101
    • Switching QoS
  • Network Optimization
    • NetFlow 101 – TNF – Traditional NetFlow
    • NetFlow 102 – FNF – Flexible NetFlow
    • IP SLA 101
    • IP Accounting 101
    • Logging 101
    • SNMP and RMON 101
    • Cisco CLI Tips and Tricks
    • AutoInstall
    • Enhanced Object Tracking
    • Troubleshooting 101
    • SPAN, RSPAN, ERSPAN
  • Network Architecture
    • Hierarchical Network Architecture
    • SD Access
    • SD WAN
Powered by GitBook
On this page
  • SD WAN components
  • vManage NMS
  • vSmart Controller
  • SD WAN routers
  • vBond Orchestrator
  • vAnalytics
  • Cloud OnRamp

Was this helpful?

  1. Network Architecture

SD WAN

The enterprise version of Cisco SD WAN is based on Viptela and it is an overlay WAN infrastructure.

SD WAN components

vManage NMS

This component is a single pane of glass NMS GUI that is used to configure and manage the SD WAN solution

vSmart Controller

When a SD WAN router comes online it authenticates with the vSmart Controller. The vSmart Controller establishes a DTLS tunnel to each router. On top of these tunnels it establishes OMP (Overlay Management Protocol) neighborships with each SD WAN router.

OMP is a proprietary routing protocol that can advertise routes, next hops, keys and polisy information needed to maintain the SD WAN fabric.

Using OMP the vSmart Controller learns routes from SD WAN routers and calculates the best routes to network destinations. Then it advertises reachability information to all SD WAN routers in the fabric.

The vSmart Controller will also translate the policies defined in vManage NMS into a format supported by SD WAN routers and will push it to the devices.

SD WAN routers

The SD WAN routers establish DTLS tunnels to vSmart Controllers and then form OMP neighborships with them. They also establish IPsec sessions with other SD-WAN routers in the fabric.

The SD WAN routers will make site-local decisions regarding routing, HA, interfaces, ARP management and ACLs.

There are 2 types of SD WAN routers:

  • vEdge - original Viptela implementation

  • cEdge - Viptela software integrated into Cisco IOS-XE

vBond Orchestrator

The vBond Orchestrator authenticates the vSmart controllers and the SD WAN routers and orchestrates the connectivity between them. A vBond orchestrator has the following components:

  • Control plane connections: Each vBond orcherstrator has a DTLS tunnel with each vSmart controller. It also uses DTLS to communicate with SD WAN routers to allow them to connect to teh SD-WAN fabric.

  • NAT traversal: With this features the vBond Orchestrator facilitates connectivity between routers and vSmart controllers that are behind NAT

  • Load Balancing: When multiple vSmart Controllers are used, the vBond Orchestrator automatically performs load balancing of SD WAN routers across the vSmart controllers.

vAnalytics

This is an optional component that provides analytics and service assurance.

Cloud OnRamp

Cloud OnRamp is a set of functionalities that facilitates optimal connectivity for cloud SaaS applications or cloud IaaS environments.

PreviousSD Access

Last updated 2 years ago

Was this helpful?