|
6. |
According to your needs, configure one or more of these sections.
-
To configure system-wide functionality on a Cisco Catalyst SD-WAN device, select the Basic Configuration tab and configure these parameters.
Table 5.
| Field |
Description |
| Site ID (on routers, Cisco SD-WAN Manager instances, and Cisco SD-WAN Controller) |
Identifier of the site in the SD-WAN fabric domain where the device resides, such as a branch, campus, or data center. The site ID must be the same for all devices at the same site. Range: 1 through 4,294,967,295 (232 – 1, or hexadecimal 0x100000000 – 1) |
| System IP |
System IP address for the Cisco Catalyst SD-WAN device, in decimal four-part dotted notation. The system IP address provides a fixed location of the device in the overlay network and is a component of the device's TLOC address. It is used as the device's loopback address in the transport VPN (VPN 0). You cannot use this same address for another interface in VPN 0. |
| Timezone |
Timezone to use on the device. |
| Hostname |
Name for the device. Maximum 32 characters. |
| Location |
Description of the location of the device. Maximum 128 characters. |
| Device Groups |
Names of one or more groups to which the device belongs, separated by commas. |
| Controller Groups |
SD-WAN Controller groups to which the router belongs. |
| Description |
Additional descriptive information about the device. |
| Console Baud Rate |
Baud rate of the console connection on the router. Values: 1200, 2400, 4800, 9600, 19200, 38400, 57600, 115200 baud or bits per second (bps). Default: 9600 (from Cisco vManage Release 20.3.1) |
| Maximum OMP Sessions |
Maximum number of OMP sessions that a router can establish to a Cisco Catalyst SD-WAN Controller. Range: 0 through 100 Default: 2 |
-
To configure a device location, select the GPS tab and configure these parameters. The location is used to place the device on the SD-WAN Manager network map. Setting the location also allows SD-WAN Manager to send a notification if the device is moved to another location.
Table 6.
| Field |
Description |
| Latitude |
Latitude of the device, in the format decimal-degrees . |
| Longitude |
Longitude of the device, in the format decimal-degrees . |
-
To track the status of transport interfaces that connect to the internet (Network Address Translation Direct Internet Access (NAT DIA),
Then configure these parameters.
Table 7.
| Field |
Description |
| Name |
Name of the tracker. The name can be up to 128 alphanumeric characters. You can configure up to eight trackers. |
| Tracker Type |
Choose an interface, static route. |
| Threshold |
How long to wait for the probe to return a response before declaring that the transport interface is down. Range: 100 to 1000 milliseconds Default: 300 milliseconds |
| Interval |
How often probes are sent to determine the status of the transport interface. Range: 10 to 600 seconds Default: 60 seconds (1 minute) |
| Multiplier |
Number of times to resend probes before declaring that the transport interface is down. Range: 1 to 10 Default: 3 |
| Tracker Type |
Interface or static route. |
| Endpoint Type |
IP address or DNS name. |
| Endpoint IP or Endpoint DNS Name |
Endpoint IP. or DNS name of the end point of the tunnel interface. This is the destination in the internet to which the router sends probes to determine the status of the transport interface. |
A DIA tracker helps determine if the internet or external network becomes unavailable. This feature is useful when NAT is enabled on a transport interface in VPN 0 to allow data traffic from the router to exit directly to the internet.
If the internet or external network becomes unavailable, the router continues to forward traffic based on the NAT route in the service VPN. Traffic that is forwarded to the internet gets dropped. To prevent the internet-bound traffic from being dropped, configure the DIA tracker on the edge router to track the status of the transport interface. The tracker periodically probes the interface IP address of the end point of the tunnel interface to determine the status of the transport interface. The tracker determines the status of the internet and returns the data to the attach points that are associated with the tracker.
When the tracker is configured on the transport interface, the interface IP address is used as a source IP address for probe packets.
IP SLA monitors the status of probes and measures the round trip time of these probe packets and compares the values with the configured latency in the probe. When the latency exceeds the configured threshold value, the tracker considers the network as unavailable.
If the tracker determines that the local internet is unavailable, the router withdraws the NAT route and reroutes the traffic based on the local routing configuration to overlay.
The local router continues to periodically check the status of the path to the interface. When it detects that the path is functioning again, the router reinstalls the NAT route to the internet.
For more information on NAT DIA tracker for Cisco IOS XE Catalyst SD-WAN devices, refer to NAT DIA Tracker in the Cisco Catalyst SD-WAN NAT Configuration Guide.
To apply a tracker to an interface, configure it in the VPN Interface Cellular, VPN Interface Ethernet, VPN Interface NAT Pool, or VPN Interface PPP configuration templates. You can apply only one tracker to an interface.
To monitor endpoint trackers, see Monitor NAT DIA endpoint trackers.
-
To configure additional system parameters, click Advanced and configure these parameters:
| Field |
Description |
| Control Session Policer Rate |
Maximum rate of DTLS control session traffic, to police the flow of control traffic. Range: 1 to 65535 pps Default: 300 pps |
| Port Hopping |
Click On to enable port hopping, or click Off to disable it. When a device is behind a NAT, port hopping rotates through a pool of preselected OMP port numbers (called base ports) to establish DTLS connections with other devices when a connection attempt is unsuccessful. The default base ports are 12346, 12366, 12386, 12406, and 12426. To modify the base ports, set a port offset value. To disable port hopping on an individual TLOC (tunnel interface), use the VPN Interface Ethernet configuration template. Default: Enabled on routers. Disabled on Cisco SD-WAN Manager or Cisco Catalyst SD-WAN Controller hosts. |
| Port Offset |
Number by which to offset the base port number. Configure this option when multiple devices are behind a single NAT device, to ensure that each device uses a unique base port for DTLS connections. Range: 0 to 19 |
| Track Transport |
On : Regularly check whether the DTLS connection between the device and a Cisco Catalyst SD-WAN Validator is up. Off: Disable checking. Default: Enabled |
| Track Interface |
Tag string to include in routes associated with a network that is connected to a non-operational interface. Range: 1 to 4,294,967,295 |
| Gateway Tracking |
On : Enable tracking of default gateway. Off: Disable tracking. Gateway tracking determines, for static routes, whether the next hop is reachable before adding that route to the device's route table. Default: Enabled |
| Collect Admin Tech on Reboot |
On : Collect admin-tech information when the device reboots. Off: Disable collection. |
| Idle CLI Timeout in minutes |
How long to wait, when the CLI is inactive, to log out the user. If a user is connected to the device via an SSH connection, the SSH connection is closed after this time expires. Default: CLI session does not time out. |
|