• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

SDWAN Solutions and Education??

Scheduled Pinned Locked Moved Off-Topic & Non-Support Discussion
6 Posts 5 Posters 405 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • C
    chpalmer
    last edited by Jul 6, 2024, 4:48 PM

    Curious if anyone has their own SDWAN that they have implemented and hoping to ascertain if I have a correct understanding of what SDWAN actually is...

    We have a large multi site private network that that is for the most part connected via microwave..

    We are adding cell modems at various locations for SDWAN. This includes some small routers.

    My SWAG is that the SDWAN routers create a VPN between our local network to the vendors "hub site" and then from there more connectivity to our primary headquarters.. If our primary network connectivity to a site goes down then we redirect over the cell modem through the VPN.. (I believe I am fairly close here..) If this is the case I am not to sure why we don't simply have our own "hub site(s)" but I digress..

    Triggering snowflakes one by one..
    Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

    S N 2 Replies Last reply Jul 6, 2024, 11:11 PM Reply Quote 0
    • J
      JonathanLee
      last edited by Jul 6, 2024, 5:19 PM

      Have you looked into strict source routing protocol? Cisco use to have ways to only allow approved routers within the traffic. Pretty cool right? Is sdwan a white box setup?

      Make sure to upvote

      1 Reply Last reply Reply Quote 0
      • S
        SteveITS Galactic Empire @chpalmer
        last edited by Jul 6, 2024, 11:11 PM

        @chpalmer It’s not encrypted like a VPN…more like your subnet is routed to you over either or both ISPs.

        https://en.m.wikipedia.org/wiki/SD-WAN

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote 👍 helpful posts!

        C 1 Reply Last reply Jul 7, 2024, 4:28 PM Reply Quote 1
        • C
          chpalmer @SteveITS
          last edited by Jul 7, 2024, 4:28 PM

          communicating over the Internet using overlay tunnels which are encrypted when destined for internal organization locations.

          So basically something like a VPN..?? But I get it. Thanks Steve!

          Truthfully that is basically what I had in my mind.

          Triggering snowflakes one by one..
          Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

          1 Reply Last reply Reply Quote 0
          • N
            NollipfSense @chpalmer
            last edited by NollipfSense Jul 7, 2024, 6:29 PM Jul 7, 2024, 5:53 PM

            @chpalmer I looked into it awhile back 2.4/2.5 days...there was a Linux Foundation class on https://edx.org around the same time that I took where they focus on Openstack...kind of fun.There wasn't a specific router...everything was virtual software driven/software defined networking...I had audited (free) the class. Then, I wanted to add it to Proxmox...then things got put on hold...Proxmox machine in storage. It seems that this class is available: https://www.edx.org/learn/cloud-computing/the-linux-foundation-introduction-to-openstack?index=product&queryID=4cdeb5f3688bbe17b70cca8b73162315&position=1&linked_from=autocomplete&c=autocomplete

            They even included pfSense in the course...

            pfSense+ 23.09 Lenovo Thinkcentre M93P SFF Quadcore i7 dual Raid-ZFS 128GB-SSD 32GB-RAM PCI-Intel i350-t4 NIC, -Intel QAT 8950.
            pfSense+ 23.09 VM-Proxmox, Dell Precision Xeon-W2155 Nvme 500GB-ZFS 128GB-RAM PCIe-Intel i350-t4, Intel QAT-8950, P-cloud.

            1 Reply Last reply Reply Quote 1
            • S
              stephenw10 Netgate Administrator
              last edited by Jul 8, 2024, 5:24 PM

              It can be encrypted. SDWAN has always seemed pretty flexibly defined IMO. 😉

              For example Tailscale/Headscale or Tinc would be considered SDWAN by some.

              1 Reply Last reply Reply Quote 1
              6 out of 6
              • First post
                6/6
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                This community forum collects and processes your personal information.
                consent.not_received