A CPE device with traffic encryption enabled forwards encrypted traffic over all of its links, including new links that will be established in the future. You can enable or disable traffic encryption in a CPE template or on a CPE device. Traffic encryption settings specified in the CPE template are automatically propagated to all CPE devices that use this CPE template.
To enable traffic encryption on a CPE device:
Enable traffic encryption on the CPE device in one of the following ways:
If you want to enable traffic encryption in a CPE template, go to the SD-WAN → CPE templates menu section, click the CPE template, and select the Link encryption tab.
If you want to enable traffic encryption on a CPE device, go to the SD-WAN → CPE menu section, click the CPE device, select the Link encryption tab, and select the Override check box.
The traffic encryption policy is displayed.
In the Enable encryption drop-down list, select Enabled. The default value is Disabled.
In the upper part of the settings area, click Save to save the settings of the CPE template or CPE device.