All Posts

Re: VPN DO NOT ESTABLISH BETWEEN VELOCLOUD GATEWAY AND FORTIGATE

by Enthusiast in VeloCloud Discussions
‎08-29-2023 05:11 AM
‎08-29-2023 05:11 AM
Hi, I have never used Fortigate FW with VMware SD-WAN. It may be  PFS setting. Have you tried "no PFS" setting?

VPN DO NOT ESTABLISH BETWEEN VELOCLOUD GATEWAY AND FORTIGATE

by Contributor in VeloCloud Discussions
‎08-28-2023 08:03 AM
‎08-28-2023 08:03 AM
Hi guys, I have a problem with IpSec VPN between Velocloud gateway and Fortigate (VM fortigate on OCI, fortigate 200E, 80E, and 500E appliance). In both cases the VPN isn't established correctly. D... See more...
Hi guys, I have a problem with IpSec VPN between Velocloud gateway and Fortigate (VM fortigate on OCI, fortigate 200E, 80E, and 500E appliance). In both cases the VPN isn't established correctly. Do you have the same problem or something similar? In the case of VPN between Velocloud Gateway and Fortigate VM there is a mismatch with the SPI parameter
Labels

Re: "invalid probe interval for interface GE4" Error while configuring static IP addresses

by Enthusiast in VeloCloud Discussions
‎08-26-2023 10:42 AM
‎08-26-2023 10:42 AM
On the same page that I was trying to save the changes to, the Edge configuration page. Also what is a P.94?

Re: WAN terminated on VLAN

by Enthusiast in VeloCloud Discussions
‎08-26-2023 10:40 AM
‎08-26-2023 10:40 AM
Good day, So if I configure it as a routed port (and assign the correct VLAN to it), and add a secondary interface (and add the correct VLAN to it), how do I program the opposite Cisco switch interf... See more...
Good day, So if I configure it as a routed port (and assign the correct VLAN to it), and add a secondary interface (and add the correct VLAN to it), how do I program the opposite Cisco switch interface (switched)? in a trunk mode or what? 

Re: "invalid probe interval for interface GE4" Error while configuring static IP addresses

by Enthusiast in VeloCloud Discussions
‎08-26-2023 09:46 AM
‎08-26-2023 09:46 AM
Hi, Which page did you have trouble with? Is it P.94? Regard

Re: WAN terminated on VLAN

by Enthusiast in VeloCloud Discussions
‎08-26-2023 09:29 AM
‎08-26-2023 09:29 AM
Hi Edge packets are processed by routing. In this case, it's a good idea to check the Edge's routing table. Also, overlays cannot be enabled on switching ports. I think it would be good to set it... See more...
Hi Edge packets are processed by routing. In this case, it's a good idea to check the Edge's routing table. Also, overlays cannot be enabled on switching ports. I think it would be good to set it to a routed port and configure a secondary interface. Regard

WAN terminated on VLAN

by Enthusiast in VeloCloud Discussions
‎08-25-2023 12:49 PM
‎08-25-2023 12:49 PM
Good day, At a branch, I have configured the active 510 GE4 as DHCP client (routed port mode). This works (as expected) by bringing the Edge to the network and it shows up in Orchestrator. The prob... See more...
Good day, At a branch, I have configured the active 510 GE4 as DHCP client (routed port mode). This works (as expected) by bringing the Edge to the network and it shows up in Orchestrator. The problem is in GE3: I have configured this port as switched trunk, and added two VLANs that I have already configured with static IP addresses, each representing a different WAN. How can I add default gateways for each VLAN so it can communicate with the internet. I added default routes as can be seen in the attached screenshot but will the Edge be able to identify which CLAN is connected with which route? Also will it use it to build overlays? After I have done this, the Edge still shows as having one link, meaning the VLANs did not register as WAN links. Am I missing something here?   Just to confirm one thing, I can ping both VLAN IP addresses from outside.  This means the default routes worked. However Orchestrator still shows the edge have only one link rather than 3

"invalid probe interval for interface GE4" Error while configuring static IP addresses

by Enthusiast in VeloCloud Discussions
‎08-23-2023 10:32 AM
‎08-23-2023 10:32 AM
Good day, I was trying to setup a static IP address at the Edge level, I followed the HoL-2340-1-net LAB guide method to the letter. Yet when I try to save changes, I get "invalid probe interval fo... See more...
Good day, I was trying to setup a static IP address at the Edge level, I followed the HoL-2340-1-net LAB guide method to the letter. Yet when I try to save changes, I get "invalid probe interval for interface GE4" error. Googling this error returns 0 results. I am getting a feeling we made a mistake choosing VMware. Don't get me wrong, their ESXi and Workstation Player products are phenomenal, but the eco system is disappointing to say the least. I think we should have gone with Cisco.

Re: Support Bundle

by Enthusiast in VeloCloud Discussions
‎08-23-2023 01:49 AM
1 Kudo
‎08-23-2023 01:49 AM
1 Kudo
Hi, I found the document, but I could not see it on Orchestrator either. Diagnostic Bundles for Edges https://docs.vmware.com/en/VMware-SD-WAN/5.2/VMware-SD-WAN-Administration-Guide/GUID-82F86... See more...
Hi, I found the document, but I could not see it on Orchestrator either. Diagnostic Bundles for Edges https://docs.vmware.com/en/VMware-SD-WAN/5.2/VMware-SD-WAN-Administration-Guide/GUID-82F8692E-839D-4353-B4A2-B301C1DED73C.html I think you should contact VMware support. You can get the diagnostic bundle in other ways. If you allow access to the local UI from the Edge firewall settings, you would be able to get the diagnostic bundle from local, but VMware KB does not recommend this. These materials might be helpful. Configure Edge Access https://docs.vmware.com/en/VMware-SD-WAN/5.1/VMware-SD-WAN-Administration-Guide/GUID-63895B33-A4D3-43F7-9F19-263DA8DA13AC.html Configure Profile Firewall https://docs.vmware.com/en/VMware-SD-WAN/5.2/VMware-SD-WAN-Administration-Guide/GUID-950E1A6F-70CD-4958-B2FE-E5D4DC817F99.html?hWord=N4IghgNiBcIMIHsB2AzAlgcwK4CcCmABAKIAmGhAggMZV4DOdIAvkA How to generate a VMware SD-WAN™ Edge diagnostic bundle via Local Web UI (77248) https://kb.vmware.com/s/article/77248 Local Web User Interface Access of the VMware SD-WAN Edge by VeloCloud is disabled by default (55009) https://kb.vmware.com/s/article/55009 Local user is unable to access the Local Web UI of the VMware SD-WAN by VeloCloud Edge (2740819) https://kb.vmware.com/s/article/2740819

Re: Standard HA Standby unit activation

by Enthusiast in VeloCloud Discussions
‎08-22-2023 10:29 AM
1 Kudo
‎08-22-2023 10:29 AM
1 Kudo
Yes,  Here is a brief description of the procedure. 1.  Create a new edge on Orchestrator and Enable HA configuration  2. Edge Activate. 3. Connect active and standby edges via GE1 port Thes... See more...
Yes,  Here is a brief description of the procedure. 1.  Create a new edge on Orchestrator and Enable HA configuration  2. Edge Activate. 3. Connect active and standby edges via GE1 port These materials may be useful. VMware Docs Configure High Availability on SD-WAN Edge Prerequisites https://docs.vmware.com/en/VMware-SD-WAN/5.2/VMware-SD-WAN-Administration-Guide/GUID-3F424EA9-79B7-4F7F-A418-EBD7CF9998A0.html Activate High Availability https://docs.vmware.com/en/VMware-SD-WAN/5.2/VMware-SD-WAN-Administration-Guide/GUID-71C39F31-ADAE-41C9-BDB1-53CC5057F149.html Connect the Standby SD-WAN Edge to the Active Edge https://docs.vmware.com/en/VMware-SD-WAN/5.2/VMware-SD-WAN-Administration-Guide/GUID-17011695-1025-4A8F-B9FE-15F73E4CCFFC.html Connect LAN and WAN Interfaces on Standby SD-WAN Edge https://docs.vmware.com/en/VMware-SD-WAN/5.2/VMware-SD-WAN-Administration-Guide/GUID-5E8AD49E-11C6-492A-B700-35AC09360B79.html

Re: Edge Serial number for Activation

by Enthusiast in VeloCloud Discussions
‎08-22-2023 10:13 AM
‎08-22-2023 10:13 AM
Many Thanks

Re: SD-WAN network virtual LAB at home

by Enthusiast in VeloCloud Discussions
‎08-22-2023 10:13 AM
‎08-22-2023 10:13 AM
Good day @khirom    The problem with these labs is that they are preconfigured. I need something from scratch to reflect my current state

Re: Standard HA Standby unit activation

by Enthusiast in VeloCloud Discussions
‎08-22-2023 10:12 AM
1 Kudo
‎08-22-2023 10:12 AM
1 Kudo
Hello @khirom    But I MUST create such an EDGE from Configure --> Edge Right? 

Re: SD-WAN network virtual LAB at home

by Enthusiast in VeloCloud Discussions
‎08-22-2023 10:10 AM
‎08-22-2023 10:10 AM
Hi, I have not tried it but it seems EVE-NG can do it. I see the question on this forum from time to time. You can try using VMware Hands On Lab. https://pathfinder.vmware.com/v3/page/hands-on-l... See more...
Hi, I have not tried it but it seems EVE-NG can do it. I see the question on this forum from time to time. You can try using VMware Hands On Lab. https://pathfinder.vmware.com/v3/page/hands-on-labs  

Re: Standard HA Standby unit activation

by Enthusiast in VeloCloud Discussions
‎08-22-2023 10:06 AM
1 Kudo
‎08-22-2023 10:06 AM
1 Kudo
Hi, Standby Edge does not require activation. Just connect an activated HA active Edge GE1 and an unactivated (factory condition) VMware SD-WAN Edge on the GE1 port.  

Re: Edge Serial number for Activation

by Enthusiast in VeloCloud Discussions
‎08-22-2023 09:58 AM
1 Kudo
‎08-22-2023 09:58 AM
1 Kudo
Hi, The serial number is the same as the service tag. The Service Tag is found on the VMware SD-WAN Edge. You can find the serial number of the VMware SD-WAN Edge you have already activated in O... See more...
Hi, The serial number is the same as the service tag. The Service Tag is found on the VMware SD-WAN Edge. You can find the serial number of the VMware SD-WAN Edge you have already activated in Orchestrator.

Re: Edge and Cisco switches

by Enthusiast in VeloCloud Discussions
‎08-22-2023 09:19 AM
‎08-22-2023 09:19 AM
Edge port assignments can be made in profiles, but IP addresses and other settings are configured for individual Edges. https://docs.vmware.com/en/VMware-SD-WAN/5.2/VMware-SD-WAN-Administration-... See more...
Edge port assignments can be made in profiles, but IP addresses and other settings are configured for individual Edges. https://docs.vmware.com/en/VMware-SD-WAN/5.2/VMware-SD-WAN-Administration-Guide/GUID-554B6DB5-60B7-4479-8157-195C546EC602.html Segments is similar to VRFs. Segments is used when you want to separate traffic. This Document is helpful to understand VMware SD-WAN for me. https://sase.vmware.com/resources/sdwan-1-on-1-the-what-why-and-how

Re: Edge and Cisco switches

by Enthusiast in VeloCloud Discussions
‎08-22-2023 09:09 AM
‎08-22-2023 09:09 AM
Hi, This KB might be helpful. VMware SD-WAN Edge Interface Types and WAN Overlay (74846) https://kb.vmware.com/s/article/74846

Re: VPN to Non-SD-WAN destination (NSD) directly from Edge?

by Enthusiast in VeloCloud Discussions
‎08-22-2023 08:52 AM
1 Kudo
‎08-22-2023 08:52 AM
1 Kudo
Good day @khirom  Thanks. I have indeed managed to find the settings, BUT I confirmed (after talking to our partner) that VMware does not support DH group24 (max=group21) so I am pretty much screwed... See more...
Good day @khirom  Thanks. I have indeed managed to find the settings, BUT I confirmed (after talking to our partner) that VMware does not support DH group24 (max=group21) so I am pretty much screwed. Many thanks for your support though

Re: VPN to Non-SD-WAN destination (NSD) directly from Edge?

by Enthusiast in VeloCloud Discussions
‎08-22-2023 08:50 AM
1 Kudo
‎08-22-2023 08:50 AM
1 Kudo
Hi, These documents might be helpful. Configure a Non SD-WAN Destinations via Edge https://docs.vmware.com/en/VMware-SD-WAN/5.1/VMware-SD-WAN-Administration-Guide/GUID-7122D54E-2A8E-40B2-A5E3-... See more...
Hi, These documents might be helpful. Configure a Non SD-WAN Destinations via Edge https://docs.vmware.com/en/VMware-SD-WAN/5.1/VMware-SD-WAN-Administration-Guide/GUID-7122D54E-2A8E-40B2-A5E3-4B6A3C928202.html VMware SD-WAN Edge using Non SD-WAN Destination (NSD) via Edge may periodically experience a Dataplane Service failure (89644) https://kb.vmware.com/s/article/89644 I have tested the connection between VMware SD-WAN Edge (Branch Edge) and the public cloud using NSD via Edge, but have not tried a VPN connection to Cisco ISR/ASR.