No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Typical Configuration Examples

SD-WAN V100R018C00

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Dual-Hub Networking with Layer 2 MPLS and Internet Uplinks

Dual-Hub Networking with Layer 2 MPLS and Internet Uplinks

Related Products

Agile Controller-Campus: V300R003C00

AR: V300R003C00

Networking Requirements

Enterprise A has a headquarters and several branches. An SD-WAN network needs to be constructed to replace the traditional enterprise network. The WAN-side networks are the Layer 2 MPLS network and the Internet. To improve reliability, a standby hub site needs to be created at the headquarters. If a fault occurs at the headquarters' active hub site, services can be switched to the standby hub site, ensuring the normal operation of the entire network.

Solution Design

Figure 1-5 Enterprise networking

Based on customer requirements and the networking plan, perform the following tasks:

  1. Create an SD-WAN network with an active hub site, a standby hub site and multiple branch sites. The following example creates an SD-WAN network with three branch sites: Site2, Site3, and Site4. The legacy site, Site1, is not managed by the Agile Controller-Campus. Therefore, it does not need to be created on the Agile Controller-Campus.
  2. Two CPEs are deployed as gateways at both hub sites as well as at Site3. At each of these three sites, one CPE connects to the MPLS network through a WAN link, and the other CPE connects to the Internet through a WAN link. At Site2, one CPE is deployed as the gateway and connects to the MPLS network through two WAN links. At Site4, two CPEs are deployed as gateways and each CPE connects to the Internet through a WAN link. The Internet link at Site3 obtains a dynamic IP address through PPPoE, whereas other links are configured with static IP addresses.
  3. The NTP clock synchronization mechanism is used to synchronize clocks on devices. The hub sites have NTP clock synchronization configured to synchronize their clocks with that of the NTP server, whereas branch sites synchronize their clocks with that of the hub site.

Data Plan

Table 1-23 Tenant information

Item

Value

Tenant Name

TenantA

Account

TenantA@test.com

Password

PassA@1234

Table 1-24 Global network parameters

Item

Value

Transport Network

MPLS1

Internet1

MPLS2

Internet2

Routing Domain

MPLS

Internet

MPLS

Internet

IPSec Encryption

OFF

ON

OFF

ON

Encryption algorithm

AES256

Pre-shared key

Generate

URL encryption key

123456

Token validity period (day)

7

AS number

65001

Network scale (based CPEs)

500

IP pool

10.200.0.0/16

DNS Server IP

8.8.8.8

Table 1-25 Information about devices

Device ESN

Device Name

Device Model

2102114484P0GC000330

Hub1_1

AR3670

2102114484P0GC000331

Hub1_2

AR3670

2102114484P0GC000332

Hub2_1

AR3670

2102114484P0GC000333

Hub2_2

AR3670

2102351BTJ10H1000320

Site2_1

AR161EW

2102351BTJ10H1000321

Site3_1

AR161EW

2102351BTJ10H1000322

Site3_2

AR161EW

2102351BTJ10H1000323

Site4_1

AR161EW

2102351BTJ10H1000324

Site4_2

AR161EW

Table 1-26 Site template

Item

Value

Template name

Hub

Branch1

Branch2

Branch3

Description

-

-

-

-

Gateway

Dual Gateways

Single Gateway

Dual Gateways

Dual Gateways

WAN Link

Name

MPLS1

Internet1

MPLS1

MPLS2

MPLS1

Internet1

Internet1

Internet2

Device

Device1

Device2

Device1

Device1

Device1

Device2

Device1

Device2

Interface

GE3/0/0

GE3/0/0

GE0/0/0

GE0/0/4

GE0/0/4

GE0/0/4

GE0/0/4

GE0/0/4

Transport Network

MPLS1

Internet1

MPLS1

MPLS2

MPLS1

Internet1

Internet1

Internet2

Role

Active

Active

Active

Active

Active

Active

Active

Active

Inter-CPE Link

Reuse LAN-side L2 interface

OFF

-

-

OFF

OFF

Device1 Interface

GE3/0/1

GE3/0/2

-

-

GE0/0/1

GE0/0/2

GE0/0/1

GE0/0/2

Device2 Interface

GE3/0/1

GE3/0/2

-

-

G00/0/1

GE0/0/2

G00/0/1

GE0/0/2

Table 1-27 ZTP configurations at sites

Item

Value

Site

Hub1

Hub2

Site2

Site3

Site4

Site template

Hub

Hub

Branch1

Branch2

Branch3

Link name

MPLS1

Internet1

MPLS1

Internet1

MPLS1

MPLS2

MPLS1

Internet1

Internet1

Internet2

Interface protocol

IPoE

IPoE

IPoE

IPoE

IPoE

IPoE

IPoE

PPPoE

IPoE

IPoE

IP address access mode

Static

Static

Static

Static

Static

Static

Static

-

Static

Static

IP address/Subnet mask

172.16.1.1/24

10.100.1.1/30

172.16.1.2/24

10.100.2.1/30

172.16.1.4/24

172.16.1.5/24

172.16.1.6/24

-

10.100.3.1/30

10.100.4.1/30

Default gateway

172.16.1.254

10.100.1.2

172.16.1.254

10.100.2.2

172.16.1.254

172.16.1.254

172.16.1.254

-

10.100.3.2

10.100.4.2

PPPoE User name

-

-

-

-

-

-

-

user@web.com

-

-

PPPoE Password

-

-

-

-

-

-

-

Pass1234

-

-

Public IP

172.16.1.1

10.100.1.1

172.16.1.2

10.100.2.1

-

-

-

-

-

-

Negotiation mode

Auto

Auto

Auto

Auto

Auto

Auto

Auto

Auto

Auto

Auto

Uplink bandwidth (Mbps)

100

100

100

100

100

100

100

100

100

100

Downlink bandwidth (Mbps)

100

100

100

100

100

100

100

100

100

100

Table 1-28 NTP information at hub sites

Item

Value

Time zone

(UTC+08:00)Beijing,Chongqing,Hong Kong,Urumqi

NTP authentication

ON

Authentication password

ntp123

Authentication key id

456789

NTP client mode

Manual Configuration

Device

Hub1_1

Hub1_2

Hub2_1

Hub2_2

WAN Link

MPLS1

Internet1

MPLS1

Internet1

NTP Server Address

10.10.1.1

10.10.1.1

10.10.1.1

10.10.1.1

Authentication

OFF

OFF

OFF

OFF

Table 1-29 NTP information about branch sites

Item

Value

Time zone

(UTC+08:00)Beijing,Chongqing,Hong Kong,Urumqi

NTP authentication

OFF

NTP client mode

Automatic Synchronization with Parent Node

Procedure

  1. Log in to the Agile Controller-Campus as a tenant administrator.
  2. Set global network parameters.

    1. Choose Configuration > Global Parameters.
    2. Configure a transport network.

    3. Set IPSec encryption parameters.

      Select Encryption algorithm and click Generate. A PSK is generated.

    4. Configure device activation security.

      Enter a URL encryption key, and set Token validity period.

    5. Click Apply Changes.
    6. Click Virtual Network. The Virtual Network page is displayed.
    7. Configure a route.

      Enter the AS number of the BGP route. The default value is 65001.

    8. Select the number of sites and add an address pool.

    9. Add the DNS server IP address.

    10. Click Apply Changes.

  3. Add devices in batches based on ESNs.

    1. Choose Device Management > Device List. The Device List page is displayed.
    2. Click Add Device and set Addition method to Batch import.
    3. Click Template to download the template file.
    4. Fill in the template with required information and save the file.
    5. Click , select the configured template file, and click Upload.
    6. Confirm the imported data, select the data to be created for CPEs, and click OK.

  4. Create two site templates for the hub sites, and branch sites separately.

    1. Choose Configuration > Site > Template. On the Site Template page that is displayed, click Create.
    2. Enter the template information and click OK.
    • Hub site template

    • Branch site template

  5. Create hub sites and branch sites.

    1. Choose Configuration > Site.
    2. On the Site page that is displayed, click Create. Set Creation mode to Single.
    3. Enter the site information, and select the site template configured in the previous step. For a branch site, you need to select the hub site to which it connects.
    4. Under Add Device, select the devices added in the previous step.
    5. Click OK.
    • Hub sites

    • Branch sites

  6. Configure ZTP for sites.

    1. Configure WAN links for hub sites.
      1. Choose Configuration > Site > ZTP Configuration. The ZTP Configuration page is displayed.
      2. In the Not Activated list, click the created site. The WAN Link page displays link information.
      3. Click in the Operation column.
      4. In the Set WAN Link dialog box that is displayed, configure WAN link parameters of the site.
      5. Click Apply Changes to complete the WAN link configuration.
      • WAN link configuration for Hub1

      • WAN link configuration for Hub2

    2. Configure NTP for hub sites.
      1. Click NTP.
      2. On the NTP page that is displayed, select a time zone. Enter the NTP information and click Apply Changes to complete the NTP configuration.
      • NTP configuration for Hub1

      • NTP configuration for Hub2

    3. Configure WAN links for the branch sites.

      Perform the same operations as those for the hub sites to configure WAN link parameters for the branch sites and click Apply Changes.

      • WAN link configuration for Site2

      • WAN link configuration for Site3

      • WAN link configuration for Site4

    4. Configure ZTP for the branch sites.
      1. On the NTP page that is displayed, select a time zone.
      2. Set NTP client mode to Automatic Synchronization with Parent Node.
      3. Click Apply Changes.

Translation
Download
Updated: 2019-03-04

Document ID: EDOC1100036696

Views: 19498

Downloads: 130

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next