Support

Support for business applications

Kaspersky SD-WAN

Managing CPE devices

Configuring the connection of a CPE device to the orchestrator and controller

Kaspersky SD-WAN
Нет результатов
Online Help
FAQ Forum Contact support Recovery tools

Configuring the connection of a CPE device to the orchestrator and controller

April 17, 2024

ID 243248

Save as PDF

When a CPE device is being registered, it connects to the orchestrator and controller. You can configure the connection in the CPE template. When you configure the connection in a CPE template, the settings are automatically propagated to all devices that are using the template.

Certain connection settings can also be configured on the CPE device, for example, you can enable automatic restart when the management session with the controller is terminated.

To configure the connection of a CPE device to the orchestrator and controller:

  1. Configure the connection in one of the following ways:
    • If you want to configure automatic connection to the orchestrator and controller in a CPE template, go to the SD-WAN → CPE templates menu section, click the template and in the displayed settings area, select the SD-WAN settings → General settings tab.
    • If you want to configure automatic connection to the orchestrator and controller in a CPE template, go to the SD-WAN → CPE menu section, click the device and in the displayed settings area, select the SD-WAN settings → General settings tab and select the Override check box.

    This displays settings for connecting to the orchestrator and controller.

  2. If you are configuring a connection to the orchestrator and controller in a CPE template:
    1. In the Orchestrator IP/FQDN field, enter the IP address or FQDN of the orchestrator. Maximum length: 50 characters.
    2. In the Orchestrator protocol drop-down list, select the protocol for connecting the CPE device to the orchestrator:
      • http
      • https (default).
    3. In the Orchestrator port field, enter the port number of the orchestrator. Range of values: 0 to 65,535.
    4. In the OpenFlow transport drop-down list, select whether the management session between the CPE device and the controller must be encrypted:
      • TCP for an unencrypted management session.
      • SSL for an encrypted management session. Default value.

    These settings can only be specified in the CPE template. The rest of the settings in these instructions can be configured both in the CPE template and on the device.

  3. In the Auto-reboot drop-down list, select whether you want to automatically restart the CPE device whenever the connection with the controller is lost.
    • Yes If you select this option, in the Reboot timeout (sec.) field, enter the time in seconds after which the CPE device must be restarted when connection with the controller is lost. Range of values: 60 to 2,073,600.
    • No (default).
  4. In the Prioritized control plane interface drop-down list, select how a new primary management session is determined between the CPE device and the controller when the previous session is terminated:
    • Random — a randomly selected session established form a SD-WAN interface of the WAN type on the CPE device becomes the new primary management session. Default value.
    • <SD-WAN interface> — the session established from the specified SD-WAN interface of the WAN type on the CPE device becomes the new primary management session. If the interface is not available, a session established from a randomly chosen interface becomes the new primary management session.

      When this value is selected, if you want the previous primary management session to become the primary session again upon restoration:

      1. Select the Preemption check box. This check box is cleared by default.
      2. In the Timeout field, enter the time, in seconds, after which a restored management session must become the primary session. Range of values: 0 to 86,400.
  5. In the Update interval (sec.) field, enter the period in seconds for sending REST API requests from the CPE device to the orchestrator. Range of values: 5 to 300. The default setting is 30.
  6. In the URL ZTP field, enter the URL template for the basic settings of the CPE device. When entering a template, consider the following limitations:
    • {config} is a mandatory part which is replaced with settings for the CPE device when a link is generated from the template.
    • Maximum length: 128 characters.
    • You must specify http or https.

    By default, the following URL template is used: http://192.168.7.1/cgi-bin/config?payload={config}.

  7. In the Interactive update interval (sec.) field, enter the period in seconds for sending REST API requests from the CPE device to the orchestrator in interactive mode. Range of values: 1 to 10. You can enable interactive mode for CPE device diagnostics.
  8. In the Interactive mode timeout (sec.) field, enter the time in seconds after which interactive must should be automatically disabled on the CPE device. Range of values: 30 to 180.
  9. In the upper part of the settings area, click Save to save the settings of the CPE template or device.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.