Configuring Uplink Interfaces for VPNCs

  • When you add a new INET interface on a VPNC, the Overlay Tunnel Orchestrator (OTO) tunnel scanner scans all the uplinks between the Branch Gateway and VPNC, and then reruns the matching algorithm. There are possibilities that existing tunnels might be replaced with new tunnels to utilize new INET interface created on the VPNC. However, when the OTO scanner tries to match Branch Gateway uplinks with VPNC INET interface it first looks for a precise tag and If there is no precise match, then for each uplink on the Branch Gateway OTO tries to match an unused VPNC INET interface.
    Currently, OTO supports only one tunnel per uplink interface on the Branch Gateway irrespective of the number of INET interfaces available on the VPNC. For example, when a VPNC has 1 INET interface (inet1) and a Branch Gateway has 2 uplinks (link1 and link2), tunnels are established such that Branch Gateway uplinks link1 and link2 have 1 tunnel each to VPNC inet1. When you add a second INET interface (inet2) on VPNC, the existing link2 tunnel on the Branch Gateway to INET1 of VPNC is cleared and a new tunnel is established with VPNC inet2.
  • You can add multiple WAN Wide Area Network. WAN is a telecommunications network or computer network that extends over a large geographical distance. uplinks (up to 4 uplinks) in any combination of INET and MPLS Multiprotocol Label Switching. The MPLS protocol speeds up and shapes network traffic flows. .
  • VPNC WAN uplink health check is not considered in any decision making process, such as, traffic flow path selection.
  • You cannot configure multiple WAN uplinks for VGWs and non-orchestrated tunnels.
  • Tunnel negotiation is triggered for all tunnels when WAN configuration is added or deleted.
  • Tunnel renegotiation is not triggered when a WAN uplink is down, or when a tunnel is down.

To configure uplink interfaces on a VPNC, complete the following steps:

  1. To configure a VPNC, complete one of the following steps:
    • To select a gateway group:
      1. In the Aruba Central app, set the filter to a group that contains at least one Branch Gateway.

        The dashboard context for a group is displayed.

      2. Under Manage, click Devices > Gateways.

        A list of gateways is displayed in the List view.

      3. Click Config.

        The configuration page is displayed for the selected group.

    • To select a gateway:
      1. In the Aruba Central app, set the filter to Global or a group that contains at least one Branch Gateway.
      2. Under Manage, click Devices > Gateways.

        A list of gateways is displayed in the List view.

      3. Click a gateway under Device Name.

        The dashboard context for the gateway is displayed.

      4. Under Manage, click Device.

        The gateway device configuration page is displayed.

  2. If you are in the Basic Mode, click Advanced Mode to access the advanced configuration options.
  3. Click WAN > Uplink.
  4. To add an uplink VLAN Virtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN., click + in the Uplink VLANs table.
  5. Configure the following parameters:
  6. Click Save Settings.