Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

Add an SD-WAN On-Premise Spoke Site with LAN for Branch Networks

 

The following image illustrates a simple network topology that contains a CPE and an EX Switch. The CPE can be an SRX Series device or an NFX250 device.

After you connect the devices as shown in the topology diagrams and power on the devices, log into the CSO portal and add an SD-WAN site.

Before you add an on-premise spoke site:

To add an SD-WAN site with a CPE device and a LAN device:

  1. From the Sites page (Resources > Site Management) of the CSO portal, click Add and select Add On-Premise Spoke (Manual).

    The Add On-premise Spoke Site for Tenant-Name page appears.

  2. Complete the configuration according to the guidelines provided in Table 2.Note

    Fields marked with an asterisk (*) are mandatory.

  3. Review the configuration from the Summary tab and click OK.

    (Optional) click the Edit links within the summary to go directly to a specific page of the wizard and modify the configured settings.

    After you click OK, site activation is initiated and the Site Activation: Site-Name page appears.

    • If the Zero Touch Provisioning (ZTP) toggle button is enabled (default), CSO pushes the stage-1 and stage-2 configurations and provisions the switch.

      This process occurs immediately after the activation process, for which you entered the activation code or selected auto-activation.

      Note

      Stage-1 configuration is the initial configuration that allows basic connectivity to a device, which is pushed to the device.

      The configuration that is pushed to the device after it has connected to CSO is called stage-2 configuration.

    • If you disabled the Zero Touch Provisioning (ZTP) toggle button, you must manually configure the stage-1 configuration (as provided by CSO) on the switch.

      To manually configure the stage-1 configuration:

      1. On the Site Activation: Site-Name page, the Click to copy stage-1 configuration link appears after the Prestage Device step completes successfully.
      2. Click the Click to copy stage-1 configuration link.

        The stage-1 configuration page appears displaying the stage-1 configuration to be copied to the EX Series device.

      3. Copy the stage-1 configuration and log in to the console of the EX Series switch.
      4. Enter the configuration mode, paste, and commit the configuration.

        After the stage-1 configuration is committed, the switch has the outbound SSH configuration to connect with CSO.

        CSO then provisions the switch.

Table 2: SD-WAN On-Premise Spoke Site Settings

Field

Description

General

Site Name

Enter a unique name for the site. You can use alphanumeric characters and hyphen (-); the maximum length is 10 characters.

Site Capabilities

Select SD-WAN and LAN.

Primary Hub

Select an enterprise hub site as the primary hub from the list of available hub sites. If there is only one hub site available, that one is selected by default.

WAN

Device Series

Select the CPE device.

Device Template

Select a device template for the CPE device.

Device Name

Enter a unique name for the CPE device.

Serial Number

Enter the serial number of the CPE device.

Auto Activate

If the selected device template supports ZTP, Auto Activate is enabled. When Auto Activate is enabled, zero-touch provisioning of the device is automatically triggered when the site is added.

The Activation Code field appears if the selected device template does not support ZTP or if you disable the Auto Activate option.

In such cases, specify the activation code of the device to manually activate a device. For information about manually activating a device, see Activate a Device.

Link Type

Specify whether the link is an Internet link or an MPLS link.

If you select Internet as the Link Type, select the Access Type. The access type options available for Internet link are: Ethernet, LTE, ADSL, and VDSL.

If you select Ethernet, ADSL or VDSL as the access type, you can enable Point-to-Point Protocol over Ethernet (PPPoE) for the SD-WAN link by clicking PPPoE toggle button. If you have enabled PPPoE, you must specify the PPPoE parameters (username, password, and authentication protocol) in the PPPoE Settings.

Egress Bandwidth

Specify the maximum bandwidth allocated for the WAN link.

Address Assignment

Specify whether to use DHCP or static addresses.

Service Provider

Enter the name of the service provider.

Cost per month

Enter the per month cost of the link. This information is used to identify the least expensive link when link switch occurs.

LAN

Switch Devices

Displays the switches that you have added to the site.

To add a switch, click the + icon on the top right corner of the Switch Devices table. You can add multiple switches only to an SD-LAN site.

The Add New Switch page appears. See Table 3 for details.

Table 3 describes the fields on the Add New Switch Page.

Table 3: Fields on the Add New Switch Page

Field

Description

Device Name

Enter a unique name for the device.

Device Type

Select the type of the device.

Serial Number

Specify the serial number of the switch.

Auto Activate

Auto Activate is enabled by default. When Auto Activate is enabled, the device activation is automatically triggered when the site is added. The Activation Code field appears if you disable the Auto Activate option. In such cases, specify the activation code of the device to manually activate a device. For information about manually activating a device, see Activate a Device.

After you add the site, you can complete the following tasks as required:

Note

If Auto Activate is not enabled for the devices, ensure that device is activated before you install licenses or signatures, or deploy policies.

  • If the EX Series switch has Mist access points associated with that, you could integrate the Mist access points with CSO. For more information about integrating Mist access points with CSO, see Enabling Integration with Mist Access Points.

  • Upload and install licenses. For example, Administration > Licenses.

  • Add, edit, and deploy an SD-WAN policy. For example, Configuration > SD-WAN Policy.

  • Create and generate reports. For example, Reports > Report Definitions > SD-WAN.

  • Monitor alerts and alarms, SLA performance of tenants, and jobs. For example, Monitor > Jobs.

For more information about these tasks, see the Contrail Service Orchestration documentation at https://www.juniper.net/ documentation/product/en_US/contrail-service-orchestration.