Add an Enterprise Hub Site with SD-WAN and LAN Capabilities
An enterprise hub is an SD-WAN site that is used to carry site-to-site traffic between on-premise spoke sites and to break out backhaul (central breakout) traffic from on-premise spoke sites. You can add an EX Series switch for branch network as part of the enterprise hub site. The following illustration shows a simple topology that contains an enterprise hub and an EX Series switch.
To add an enterprise hub:
- On the Sites page (Resources > Site Management) of the CSO portal, click Add, and select Enterprise
The Add enterprise hub for Tenant-Name page appears.
- Complete the configuration settings according to the guidelines provided in Table 1.
- Click OK.
The site activation job is initiated and the Site Activation: Site-Name page appears displaying the progress of the steps executed for activating the devices in the site.
If the Zero Touch Provisioning (ZTP) toggle button is enabled (default), CSO pushes the stage-1 and stage-2 configurations and provisions the switch.
This process occurs immediately after the activation process, for which you entered the activation code or selected auto-activation.
Stage-1 configuration is the initial configuration that allows basic connectivity to a device, which is pushed to the device.
The configuration that is pushed to the device after it has connected to CSO is called stage-2 configuration.
If you disabled the Zero Touch Provisioning (ZTP) toggle button, you must manually configure the stage-1 configuration (as provided by CSO) on the switch.
To manually configure the stage-1 configuration:
- On the Site Activation: Site-Name page, the Click to copy stage-1 configuration link appears after the Prestage Device step completes successfully.
- Click the Click to copy stage-1 configuration link.
The stage-1 configuration page appears displaying the stage-1 configuration to be copied to the EX Series device.
- Copy the stage-1 configuration and log in to the console of the EX Series switch.
- Enter the configuration mode, paste, and commit the configuration.
After the stage-1 configuration is committed, the switch has the outbound SSH configuration to connect with CSO.
CSO then provisions the switch.
When the site is successfully created, the Site Status on the Sites page changes to Provisioned.
Table 1: Enterprise Hub Site Settings
Enter a unique name for the site. You can use alphanumeric characters and hyphen (-); the maximum length is 10 characters.
SD-WAN capability is selected by default. You cannot clear the selection. If you want to include LAN capabilities in the enterprise hub site, select LAN.
Select the device series to which the CPE device belongs—SRX, NFX150, or NFX250.
Select a device template for the selected device series.
The device template contains information for configuring a device.
Enter the serial number of the CPE device.
If the selected device template supports auto authorization, Auto Activate is enabled. When Auto Activate is enabled, zero-touch provisioning of the device is automatically triggered when the site is added.
The Activation Code field appears if the selected device template does not support auto authorization or if you disable the Auto Activate option.
In such cases, specify the activation code of the device to manually activate a device. For information about manually activating a device, see Activate a Device.
Enter the IPv4 prefix to be used for the management network. This IP address must be unique across the entire management network.
This field is enabled by default.
You can configure up to 4 WAN links as required.
Select whether the link would be an MPLS link or Internet link.
Enter the maximum bandwidth, in Mbps, allowed on the WAN link.
Range: 1 through 10,000.
Select the method of assigning an IP address to the WAN link—DHCP or STATIC.
If you select STATIC, you must provide the IP address prefix and the gateway address for the WAN link.
Static IP Prefix
If you configured the address assignment method as STATIC, enter the IP address prefix of the WAN link.
Gateway IP Address
If you configured the address assignment method as STATIC, enter the IP address of the gateway of the WAN service provider.
Use For Fullmesh
Click the toggle button to specify whether the WAN link can be a part of a full mesh topology.
A site can have a maximum of three links enabled for meshing.
Note: This tab is enabled only if you select LAN from the Site Capabilities options in General Settings.
Enter a name for the switch. You can use alphanumeric characters and hyphen (-). The maximum length allowed is 15 characters.
Select the type of switch—EX2300, EX3400, or EX4300
When you change the default device type, a carousel for device template appears.
Select the model for the switch you specified in the Device Type.
The models vary in the number and type of ports the switch contains. For example, If you selected EX3400, select a model such as EX3400-24P, EX3400-48P, EX3400-24T among others.
Select at least two trunk ports on the CPE device to connect with the switch.
The trunk ports are used for carrying the following:
Switch Management Subnet
Specify the subnet that the DHCP can use to assign IP addresses to the switch and the access devices connected to the switch.
Specify the serial number of the switch.
Auto Activate is enabled by default. When Auto Activate is enabled, the device activation is automatically triggered when the site is added. The Activation Code field appears if you disable the Auto Activate option. In such cases, specify the activation code of the device to manually activate a device. For information about manually activating a device, see Activate a Device.
Note: You must physically connect the switch to the CPE and power it on for the switch to be automatically activated when the auto activate option is enabled.