SD-WAN (Viptela)

📘 Viptela SD-WAN Syllabus

🎓 Join SD-WAN DEMO

🧭 1. Introduction to SD-WAN

• 🔹 Before SD-WAN

• 🔹 Overview of SD-WAN

• 🔹 Advantages of SD-WAN

• 🔹 Concept of SD-WAN Underlay and Overlay

🏗️ 2. Architecture of SD-WAN

• 🧠 Controllers: vManage, vBond, vSmart

• 🌐 Transport: MPLS, Internet, Cellular

• 🖥️ WAN Edges: vEdges, cEdges

• ⚙️ Functionality:

  • vManage

  • vSmart

  • vBond

  • vEdge & cEdge

  • TLS / DTLS

  • OMP

  • BFD

• 🏢 Hosting Options: Controller & WAN Edges

🧬 3. Types of Planes in SD-WAN

• 🛠️ Management Plane (vManage)

• 📡 Orchestrator Plane (vBond)

• 🧭 Control Plane (vSmart)

• 🧱 Data Plane (vEdge & cEdge)

🔐 4. Certificate Authentication Components

• 🗃️ CA Server

• 🧾 Root Certificate

• 🖋️ CSR

• 📜 ID Certificate

🧳 5. VPN Types in SD-WAN

• 🔐 Management VPN (VPN 512)

• 🔄 Transport VPN (VPN 0)

• 🧰 Service VPN (VPN 1–511 & 513–65535)

🧾 6. SD-WAN Terminology

• 🆔 System-IP

• 🏛️ Organization Name

• 🏷️ Site-ID

• 🧩 Virtual Chassis Number / Serial Number & Token Number

• 🧰 Templates:

  • Feature Templates

  • Device Templates

• 🔄 TLOC (system-ip, color, encap)

• 🗺️ vRoute (VPN Route)

• 🔁 ECMP Mechanism

• 🛡️ Policies:

  • Centralized

  • Localized

🔧 7. SD-WAN Configuration & Troubleshooting (GUI & CLI)

1. 🧪 SD-WAN Lab Introduction

2. ⚙️ vManage Initial Config & Transport Connectivity

3. ⚙️ vSMART & vBOND Initial Config

4. ⚙️ vEDGE & cEDGE Initial Config

5. 🔐 CA Server Configuration — RootCert

6. 📥 Install RootCert in vManage (Manual)

7. 🖋️ CSR Generation & ID-Cert Installation in vManage

8. 🔗 vBOND Registration in vManage

9. 🔗 vSMART Registration in vManage

10. 📂 WAN EDGE Registration (.viptelaSerial File)

11. 📥 RootCert Installation: vEDGE

12. 📥 RootCert Installation: cEDGE

13. ✅ vChassis & Token Activation in WAN Edges

14. 🧰 Templates:

    • SYSTEM, BANNER

15. 🧰 Feature Templates for BR-vEdge:

    • VPN-0, VPN1, VPN512

    • VPN-INT

    • External Routing (OSPF, DEFAULT)

    • Internal Routing (OSPF)

16. 🛠️ Device Template for vEdge-Sites (Transport VPN)

17. 🛠️ Edit Device Template for vEDGE-Sites (Service VPN)

18. 🔍 OMP Route Advertisement, Redistribution & TLOC Verification

19. 📊 ECMP Traffic Flow Simulation

20. 🧰 HQ-vEdge Templates:

    • VPN-0, VPN1, VPN512

    • VPN-INT

    • External Routing (BGP)

    • Internal Routing (OSPF)

21. 🛠️ HQ-vEdge Device Template

22. 🛠️ Configure cEDGE Device Template

23. 📑 SD-WAN Policy Components

24. 🧰 vSMART Templates:

    • VPN-0, VPN512

    • VPN-INT

25. 🛠️ Configure Device Template — vSmart

🗺️ 8. Centralized Policy

26. 🛡️ Traffic Policy (AAR):

    • Protocol & Port-based

    • Application-based

27. 📌 Topology Policy — TLOC Preference (Primary & Backup)

28. 🚦 Topology Policy — Route Filtering

29. 🧮 Aggregate Route

30. 🏢 Hub & Spoke Without TLOC Modification

31. 🏢 Hub & Spoke With TLOC Modification

32. 🧭 TLOC-Based Hub & Spoke for Data Traffic

33. 🌍 NAT/DIA (Local Breakout)

34. 🌐 DIA via NAT DIA Route

35. ➕ Add Multiple Service VPNs to vEdges

36. ♻️ High Availability: vSMART

37. 🔄 VPN Route Leaking

38. ✏️ Editing Active Control Policy

39. ⚡ Zero Touch Provisioning (ZTP) with vEdges

🚀 9. SD-WAN Advanced Topics

1. 🛠️ Cisco cEdge Configuration

2. 🧰 BR-CSR Templates:

   • VPN-0, VPN1, VPN512

   • VPN-INT

   • OSPF, DEFAULT (External)

   • EIGRP (Internal)

3. 🔐 vEdges Behind NAT

4. 🧭 VRRP Implementation

5. 📡 TLOC Extension (Site Redundancy)

6. 🔄 Dynamic On-Demand Tunnels

7. 🌐 DIA Configuration on cEdge

8. 🔀 Service Chaining Route

9. 🌐 URL Filtering

10. 🛡️ IPS Configuration

11. 🔥 App Firewall

12. 🧱 Zone-Based Firewall

13. ⬆️ Cisco SD-WAN Upgrade

14. 💻 CLI Device Template

15. 📋 Template Value Entry (CSV)

16. ⬆️ Software Upgrade: vEdge, vBond, vSmart

17. ⬆️ cEdge Upgrade via vManage

18. ⬇️ Software Downgrade: vEdge

19. 📶 VPN Membership

20. 🌐 NAT in Transport Site

21. 🌐 NAT in Service Site

🎯 10. Localized Policy (QoS)

1. 🎚️ QoS Basics

2. 🧮 Classification & Marking

3. 🛑 Policing & Shaping

4. 🧾 CoS, ToS, DSCP

5. 📊 Queue Types

6. 🔄 QoS Implementation: Best-effort, IntServ, DiffServ

7. 🛠️ Localized QoS Policy & Templates:

   • 🎤 Voice

   • 🌐 Web

   • 📦 Other Traffic

📘 Policy Objects:

• 🗂️ Class Map

• 📜 IPv4 ACL Policy

• 🗺️ QoS Map