This article covers how to create and operate a Cisco cEdge SD-WAN virtual device using CLI template mode. Because of the specific nature of this process and the level of integration between Equinix and Cisco, we highly recommend this method because it's easier to use than other methods and it offers a significant reduction of provisioning time.
This document describes the high level, end to end workflow and is restricted to device creation only.
The visual below describes the end-to-end workflow. It shows how to provision a virtual device to operate that virtual device with your CSP.
Completing this task includes the following configuration steps:
- Create the bootstrap configuration on vManage
- Provision the device from Equinix cloud exchange portal and generate a template
- Apply the template on vManage
Before starting this process, the user must have the following:
- Cisco.com CCO login
- The appropriate DNA licenses to provision and operate the cEdge device from Cisco.com
This task requires an intermediate level of proficiency to complete.
Steps to provision a Cisco cEdge SD-WAN in CLI Template Mode
- Create a bootstrap configuration on vManage
- Login to your vManage portal, then search for an available serial number that does not have any of the following:
- Site ID
- Router ID
The above image shows a list of all devices.
This image shows the select available devices screen. Right click on the three dots next to the device to generate the bootstrap.
Next, select Generate Bootstrap Configuration.
Select Cloud Init.
Highlighted in green is the Bootstrap configuration that you'll need to bring up the device in the Equinix portal.
Then, select Generate Bootstrap Configuration.
Download and save the configuration on your workstation The file should be in the .cfg format.
Downloading the configuration file completes the first step of this process.
Next: Create your virtual device on the Equinix Cloud exchange portal
- Login to the Equinix Cloud Exchange portal
- Select High Availability (HA) or Non-HA mode
- Select your Metro
- Select your account
- Fill in the details required to create the device
- Under additional services – add the ACLs -- the networks that will require access to the device
Next, fill in the required fields on the portal.
This image shows the completed fields.
At this step, the device has been submitted for provisioning.
Once the device has been provisioned, the following tasks are complete:
- The license has been applied
- Equinix has assigned the following addresses
- Primary and secondary DNS IP address
- Public IP and public gateway UP address
- Management IP and Management gateway IP address
Here's how that looks:
This is the standard Equinix CLI configuration template provided by Equinix. The fields represented in red need to be replaced by the IP addresses provided by Equinix.
Note: in future releases, you will be able to download this template from the portal with the fields pre-populated with the IP address. Below is the file you can copy and customize:
system-ip 18.104.22.168 <-- Customer Provided Info from Portal
site-id 204 <-- Customer Provided Info from Portal
sp-organization-name "Equinix Inc" <-- Taken from Initial customer bootstrap
organization-name "Equinix Inc" <-- Taken from Initial customer bootstrap
vbond vbond-621481.viptela.net port 12346 <-- Taken from Initial customer bootstrap
auth-order local radius tacacs
task system read write
task interface read write
task system read
task interface read
task policy read
task routing read
task security read
authentication-type sha1-hmac ah-sha1-hmac
dns 22.214.171.124 primary <-- Primary DNS Server IP
dns 126.96.36.199 secondary <-- Secondary DNS Server IP
ip address 188.8.131.52/31 <-- Public IP
no allow-service bgp
no allow-service dhcp
no allow-service sshd
no allow-service netconf
no allow-service ntp
no allow-service ospf
no allow-service stun
no allow-service snmp
ip route 0.0.0.0/0 184.108.40.206 <-- Public IP Gateway
ip address 10.195.234.204/26 <-- Management IP
ip route 0.0.0.0/0 10.195.234.254 <-- Management Gateway
At this point, the device has been provisioned.
Next, vManage will verify that the device is “in-sync”.
Final Step: Apply the generated template to the device
Here's how to create a device CLI template:
- Select configuration
- Go to Devices
- Choose Create Template
- Select Create CLI Template
This screen allows you to verify that the device is “in-sync” on vManage.
Then, paste the modified template on the CLI configuration.
Now, attach the template to the device.
Select your device from the left pane, then use the arrow to navigate the left pane.
Choose a device from the list, use the arrow to add it, then select Attach to attach the device.
Next, you'll see this screen. Select Configure Devices to continue.
At this point, the configuration has been pushed into the device. Verify your configuration by reviewing the template and logging into the device via SSH.
Success! At this point, the device has been configured.