Regions and links
A region refers to a cluster of devices in one geographical location. Each region consists of exactly one hub device and one or more edge devices.
SD-WAN Orchestrator MEA automatically creates links between devices based on settings in the assigned profiles.
Links between hubs
SD-WAN Orchestrator MEA automatically builds full-mesh overlay links between all hub devices.
Links between hub and edge devices in the same region
In the same region, the connection between a hub device and its edge devices depends on the VPN mode. The VPN mode is configured in profiles, and a profile is assigned to each hub and edge device when you add it to SD-WAN Orchestrator MEA. The following VPN modes are available:
- Site-to-site VPN
- Dialup VPN
The following table summarizes how the VPN modes affect the connection between hub and edge devices:
VPN Mode |
Description |
---|---|
Site-to-site VPN |
Overlay links are full-mesh between the hub device and its edge devices in the same region. Edge devices from the same region communicate with each other by forwarding packets through their region's hub. |
Dialup VPN |
Overlay links are one-to-one between the hub device and its edge devices in the same region. In other words, one WAN port on each edge device establishes an IPsec tunnel only with one WAN port on its hub device. In DialUP VPN mode, ADVPN is supported to create shortcut tunnels between edge devices. On hub devices, select one of the following options:
On edge devices, toggle ADVPN on to enable ADVPN. Toggle off to disable ADVPN. |
Edge device communication between regions
When site-to-site VPN mode is enabled, edge devices in one region can communicate with devices in another region by using the following method:
- Edge devices send packets to their region's hub.
- The hub forwards the packet to the hub of the destination region.
- The hub from the destination region forwards the packet to the final destination.