Support

Support for business applications

Kaspersky SD-WAN

Managing CPE devices

Managing SD-WAN interfaces

Editing an SD-WAN interface of the WAN type

Kaspersky SD-WAN
Нет результатов
Online Help
FAQ Forum Contact support Recovery tools

Editing an SD-WAN interface of the WAN type

April 17, 2024

ID 256456

Save as PDF

You can edit an SD-WAN interface of the WAN type in a CPE template or on a device. You cannot edit the name of an SD-WAN interface of the WAN type. When you edit an SD-WAN interface of the WAN type in a CPE template, the interface is automatically modified on all devices that are using the template.

To edit an SD-WAN interface of the WAN type:

  1. Edit an SD-WAN interface of the WAN type in one of the following ways:
    • If you want to edit an SD-WAN interface of the WAN type in a CPE template, go to the SD-WAN → CPE templates menu section, click the template and in the displayed settings area, select the SD-WAN settings → Interfaces tab.
    • If you want to edit an SD-WAN interface of the WAN type on a CPE device, go to the SD-WAN → CPE menu section, click the device and in the displayed settings area, select the SD-WAN settings → Interfaces tab. If you want to edit an SD-WAN interface of the WAN type inherited from the CPE template, select the Override check box next to that interface.

    A table of SD-WAN interfaces is displayed.

  2. Click Edit button next to the SD-WAN interface of the WAN type that you want to edit.
  3. This opens a window; in that window, in the OpenFlow interface field, enter the number of the OpenFlow port that must be created on the virtual switch.
  4. In the Maximum rate field, enter the maximum speed of the SD-WAN interface of the WAN type in Mbps. Range of values: 1 to 100,000. The default setting is 1000.
  5. Configure the availability check of the WAN to which the SD-WAN interface of the WAN type is connected:
    1. Specify the host for checking WAN availability:
      1. Under IP for tracking, enter the IP address of the host.
      2. Click + Add.

      The host is specified and displayed under IP for tracking. You can specify multiple hosts; to delete a host, click the delete icon next to it.

    2. In the IP for fragmentation check field, enter the IPv4 address of the host up to which you want to check for fragmentation support. Default value: 1.1.1.1.
    3. In the Reliability field, enter the minimum number of successful checks that makes the WAN available. The default setting is 1.

      Make sure that the number of hosts does not exceed the number of IP addresses specified under IP for tracking. Otherwise, the WAN will always be considered unavailable.

    4. In the Interval field, enter the WAN check interval in seconds. Range of values: 1 to 600. The default setting is 2.
    5. In the Count field, enter the number of requests to hosts within one WAN check. Range of values: 1 to 600. The default setting is 2.
    6. In the Timeout field, enter the time to wait for a response from hosts, in milliseconds. Range of values: 1 to 100,000. The default setting is 2000.
    7. In the Down field, enter the number of unsuccessful checks that makes the WAN unavailable. Range of values: 1 to 600. The default setting is 3.
    8. In the Up field, enter the number of successful checks that makes the WAN available. Range of values: 1 to 600. The default setting is 2.
    9. In the Speed monitoring drop-down list, select whether you want the speed of the SD-WAN interface of the WAN type to be measured:
      • Yes
      • No (default).
  6. If you want to configure traffic queues on the SD-WAN interface of the WAN type:
    1. Select the QoS tab.

      A table of traffic queues is displayed.

    2. In the Remap ToS column, select the Type of Service value of external headers of traffic packets for each queue.
    3. In the Minimum rate (%) column, specify the minimum traffic bandwidth for the queue as a percentage of the maximum speed of the SD-WAN interface of the WAN type. The sum total in a column may not exceed 100.
    4. In the Maximum rate (%) column, specify the maximum traffic bandwidth for the queue as a percentage of the maximum speed of the SD-WAN interface of the WAN type. This setting is used to prevent traffic of high-priority queues from indefinitely preempting traffic of low-priority queues.

    The maximum speed of the SD-WAN interface of the WAN type is specified at step 5 of these instructions.

  7. If you want to configure the sending of information about the SD-WAN interface of the WAN type to the controller:
    1. Select the NAT and disjoint WAN underlay tab.
    2. In the State drop-down list, select one of the following values:
      • Disabled if you do not want information about the SD-WAN interface of the WAN type to be sent to the controller.
      • NAT/PAT if the SD-WAN interface of the WAN type is behind NAT or PAT and needs to be assigned a public IP address and UDP port number, which must be sent to the controller.
      • Disjoint WAN underlay if the SD-WAN interface of the WAN type is connected to an isolated network and its IP address must be communicated to the controller.
    3. If in the State drop-down list, you selected NAT/PAT, follow these steps:
      1. In the Real IP field, enter the public IPv4 address of the SD-WAN interface of the WAN type.
      2. In the Real GENEVE UDP port field, enter the UDP port number of the SD-WAN interface of the WAN type. Range of values: 1 to 65,535.
    4. If in the State drop-down list you selected Disjoint WAN underlay, enter the IPv4 address of the SD-WAN interface of the WAN type in the IP address field.
  8. If you want to override the IP address and port for connecting the SD-WAN interface of the WAN type to the controller:
    1. Select the Controllers tab.
    2. Select the Rewrite controllers IP/port check box. This check box is cleared by default.
    3. In the Number of controllers drop-down list, select the number of controller nodes in the SD-WAN instance.

      You must override the IP address for connecting the SD-WAN interface of the WAN type to each node of the controller. Otherwise, an error occurs and the settings remain unchanged.

    4. In the IP address field, enter the IPv4 address for connecting the SD-WAN interface of the WAN type to the controller. The number of fields corresponds to the value that you selected in the Number of controllers drop-down list.
    5. In the Port field, enter the starting port number for connecting the SD-WAN interface of the WAN type to the controller. The number of fields corresponds to the value that you selected in the Number of controllers drop-down list. Range of values: 1 to 65,535. The default setting is 6653.

      The number of configured ports depends on the number of SD-WAN interfaces of the WAN type on the CPE device. For example, if you enter 6653 as the starting port number and the device has four SD-WAN interfaces of the WAN type, port numbers 6654, 6655, and 6656 are derived from that port.

    You must restart the CPE device after overriding the IP address and port for connecting an SD-WAN interface of the WAN type to the controller

  9. Click Save.

    The SD-WAN interface of the WAN type is modified and displayed in the table.

  10. In the upper part of the settings area, click Save to save the settings of the CPE template or device.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.