Deploy Cloud Hubs
You can deploy one or more EdgeConnect Virtual (EC-V) appliances in supported platforms. At this time, AWS, Azure, and GCP are supported.
Before you begin, complete the following tasks:
-
On the AWS dashboard, Azure portal, or GCP dashboard, create an Identity and Access Management (IAM) user account with required permissions for Orchestrator to create resources. A dedicated IAM user account for Orchestrator is recommended.
-
Create a policy that contains all permissions the Orchestrator requires to create an EC-V.
-
Attach the policy to the Orchestrator’s IAM user account.
-
Download the Security credentials of the Orchestrator’s IAM user account.
-
-
If you are deploying EV-Cs in AWS, on the EC2 dashboard, create a key pair to assign to the EC-V. You will need this key pair if you want to SSH into the EC-V after the deployment.
After creating the IAM account, click New Deployment on the Cloud Hubs in AWS, Cloud Hubs in Azure, or Cloud Hubs in GCP tab to configure and deploy one or more EC-V cloud instances.
After deploying an EC-V in the cloud, navigate to the Discovered Appliances page in Orchestrator to view the deployment status. If the EC-V is still being deployed, the status in the Approve column will indicate Configuring. It takes approximately ten minutes to deploy and configure a cloud EC-V. Click Refresh Discovery Information to determine whether the appliance is ready to be approved into the SD-WAN fabric.
When configuration is complete and the green Approve button appears, the EC-V is fully configured in Inline Router mode with mgmt0, wan0, and lan0 MAC addresses assigned. While adding the EC-V, the Deployment Profile page will show LAN IP address, WAN IP address, WAN interface firewall mode, and WAN bandwidth value assigned by Orchestrator.
You can upgrade the appliance software version on a cloud EC-V after approving and adding it to the SD-WAN fabric.
After a cloud EC-V has been deployed, you can add another EC-V into the same deployment. The new EC-V will use the same settings from the existing deployment configuration such as account, region, VPC, key pair, and instance type. You can deploy the new instance into an Availability Zone that is already used by an existing appliance or a new Availability Zone.