Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

Add an Enterprise Hub Site with SD-WAN and LAN Capabilities

 

An enterprise hub is an SD-WAN site that is used to carry site-to-site traffic between on-premise spoke sites and to break out backhaul (central breakout) traffic from on-premise spoke sites. You can add an EX Series switch for branch network as part of the enterprise hub site. The following illustration shows a simple topology that contains an enterprise hub and an EX Series switch.

To add an enterprise hub:

  1. On the Sites page (Resources > Site Management) of the CSO portal, click Add, and select Enterprise Hub.

    The Add enterprise hub for Tenant-Name page appears.

  2. Complete the configuration settings according to the guidelines provided in Table 1.
  3. Click OK.

    The site activation job is initiated and the Site Activation: Site-Name page appears displaying the progress of the steps executed for activating the devices in the site.

    • If the Zero Touch Provisioning (ZTP) toggle button is enabled (default), CSO pushes the stage-1 and stage-2 configurations and provisions the switch.

      This process occurs immediately after the activation process, for which you entered the activation code or selected auto-activation.

      Note

      Stage-1 configuration is the initial configuration that allows basic connectivity to a device, which is pushed to the device.

      The configuration that is pushed to the device after it has connected to CSO is called stage-2 configuration.

    • If you disabled the Zero Touch Provisioning (ZTP) toggle button, you must manually configure the stage-1 configuration (as provided by CSO) on the switch.

      To manually configure the stage-1 configuration:

      1. On the Site Activation: Site-Name page, the Click to copy stage-1 configuration link appears after the Prestage Device step completes successfully.
      2. Click the Click to copy stage-1 configuration link.

        The stage-1 configuration page appears displaying the stage-1 configuration to be copied to the EX Series device.

      3. Copy the stage-1 configuration and log in to the console of the EX Series switch.
      4. Enter the configuration mode, paste, and commit the configuration.

        After the stage-1 configuration is committed, the switch has the outbound SSH configuration to connect with CSO.

        CSO then provisions the switch.

When the site is successfully created, the Site Status on the Sites page changes to Provisioned.

Table 1: Enterprise Hub Site Settings

Field

Description

General

Site Name

Enter a unique name for the site. You can use alphanumeric characters and hyphen (-); the maximum length is 10 characters.

Site Capabilities

SD-WAN capability is selected by default. You cannot clear the selection. If you want to include LAN capabilities in the enterprise hub site, select LAN.

WAN

Device Series

Select the device series to which the CPE device belongs—SRX, NFX150, or NFX250.

Device Template

Select a device template for the selected device series.

The device template contains information for configuring a device.

Serial Number

Enter the serial number of the CPE device.

Auto Activate

If the selected device template supports auto authorization, Auto Activate is enabled. When Auto Activate is enabled, zero-touch provisioning of the device is automatically triggered when the site is added.

The Activation Code field appears if the selected device template does not support auto authorization or if you disable the Auto Activate option.

In such cases, specify the activation code of the device to manually activate a device. For information about manually activating a device, see Activate a Device.

Note:

IP Prefix

Enter the IPv4 prefix to be used for the management network. This IP address must be unique across the entire management network.

  • For NFX150 and NFX250 devices, if the USE_SINGLE_SSH_TO_NFX parameter is disabled in the device template, then enter the IP address prefix as /29 or lower based on the number of VNFs.

  • For all other devices, enter the IP address prefix as /32.

WAN Links

WAN_0

This field is enabled by default.

You can configure up to 4 WAN links as required.

Link Type

Select whether the link would be an MPLS link or Internet link.

Egress Bandwidth

Enter the maximum bandwidth, in Mbps, allowed on the WAN link.

Range: 1 through 10,000.

Address Assignment

Select the method of assigning an IP address to the WAN link—DHCP or STATIC.

If you select STATIC, you must provide the IP address prefix and the gateway address for the WAN link.

Static IP Prefix

If you configured the address assignment method as STATIC, enter the IP address prefix of the WAN link.

Gateway IP Address

If you configured the address assignment method as STATIC, enter the IP address of the gateway of the WAN service provider.

Advanced Settings

Use For Fullmesh

Click the toggle button to specify whether the WAN link can be a part of a full mesh topology.

A site can have a maximum of three links enabled for meshing.

LAN

Note: This tab is enabled only if you select LAN from the Site Capabilities options in General Settings.

Switch Devices

Displays the switches that you have added to the site.

To add a switch, click the + icon on the top right corner of the Switch Devices table. You can add multiple switches only to an SD-LAN site.

The Add New Switch page appears. See Table 2 for details.

Table 2 describes the fields on the Add New Switch Page.

Table 2: Fields on the Add New Switch Page

Field

Description

Device Profile

Device Name

Enter a name for the switch. You can use alphanumeric characters and hyphen (-). The maximum length allowed is 15 characters.

Device Type

Select the type of switch—EX2300, EX3400, or EX4300

When you change the default device type, a carousel for device template appears.

Device Model

Select the model for the switch you specified in the Device Type.

The models vary in the number and type of ports the switch contains. For example, If you selected EX3400, select a model such as EX3400-24P, EX3400-48P, EX3400-24T among others.

CPE Settings

Trunk Ports

Select at least two trunk ports on the CPE device to connect with the switch.

The trunk ports are used for carrying the following:

  • LAN traffic between the switch and the CPE

  • Management traffic for in-band management of the switch.

Switch Management Subnet

Specify the subnet that the DHCP can use to assign IP addresses to the switch and the access devices connected to the switch.

Switch Details

Serial Number

Specify the serial number of the switch.

Auto Activate

Auto Activate is enabled by default. When Auto Activate is enabled, the device activation is automatically triggered when the site is added. The Activation Code field appears if you disable the Auto Activate option. In such cases, specify the activation code of the device to manually activate a device. For information about manually activating a device, see Activate a Device.

Note: You must physically connect the switch to the CPE and power it on for the switch to be automatically activated when the auto activate option is enabled.

Related Documentation