Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

Adding Cloud Breakout Settings

 

You use the Add Cloud Breakout Settings page to add cloud breakout settings that you can then apply to sites.

To add cloud breakout settings:

  1. Select Configuration > SD-WAN > Breakout Profiles.

    The Breakout Profiles page appears.

  2. On the Cloud Breakout Settings tab, click the add icon (+).

    The Add Cloud Breakout Settings page appears.

  3. Complete the configuration according to the guidelines provided in Table 1.Note

    Fields marked with an asterisk (*) are mandatory.

  4. Click OK.

    You are returned to the Breakout Profiles page (Cloud Breakout Settings tab) and a confirmation message indicating that the breakout settings are added is displayed.

    After you add cloud breakout settings, you can assign the settings to one or more sites. Assigning cloud breakout settings to sites provisions the cloud breakout node (Zscaler) overlay. For traffic to flow, you must reference the cloud breakout profile in an SD-WAN policy intent.

Table 1: Fields on the Add Cloud Breakout Settings Page

Field

Description

Name

Enter a unique name for the cloud breakout settings. You can use alphanumeric characters and hyphens (-); the maximum length is 15 characters.

Primary Gateway IP Address

Enter the IPv4 address of the primary cloud breakout node. Currently, Zscaler is the only cloud-based security platform supported.

Primary Preferred Link Type

Select the preferred type of WAN link (MPLS or Internet) to be used for breaking out the traffic to the primary cloud breakout node.

If a WAN link type that matches the preferred path is enabled for breakout, then that WAN link type is used for breakout traffic.

Primary Preshared Key

Enter the preshared key used for IKE authentication with the primary cloud breakout node.

The key that you enter is masked.

Secondary Gateway IP Address

Enter the IPv4 address of the secondary cloud breakout node. Currently, Zscaler is the only cloud-based security platform supported.

Secondary Preferred Link Type

Select the preferred type of WAN link (MPLS or Internet) to be used for breaking out the traffic to the secondary cloud breakout node.

If a WAN link type that matches the preferred path is enabled for breakout, then that WAN link type is used for breakout traffic.

Secondary Preshared Key

Enter the preshared key used for IKE authentication with the secondary cloud breakout node.

The key that you enter is masked.