SD-WAN

 View Only
Expand all | Collapse all

Tutorial and observations of deploying a Virtual Gateway (VPNC) on ESXi

This thread has been viewed 34 times
  • 1.  Tutorial and observations of deploying a Virtual Gateway (VPNC) on ESXi

    Posted Apr 23, 2024 10:07 AM
    Edited by mvanoverbeek Apr 25, 2024 02:32 PM

    I thought I would share this information to help fellow Airheads. I had spent many hours trying to set up a Aruba Virtual Gateway as VPNC to function as a comparable alternative to a hardware based Gateway. I observed that the documentation as well as videos that are out there to set up a Hardware gateway will not help you with your virtual gateway. It was Zach Weenig who pointed me in the right direction in this post: Virtual Gateway Not working | SD-WAN (arubanetworks.com)

    Before I will show you how I was able to successfully configure the Virtual Gateway, some observations:

    • Do not attempt to set up a Virtual gateway without 'kickstarting' it through the basic guided setup.
    • Do not expect the WAN tab in "Manage" to populate, there is no WAN interface on a Virtual Gateway.
    • Do not create a gateway IP pool to assign your System IPs, it will not work, just assign IP addresses manually.
    • Do not change interface settings in Advanced mode (you will receive warnings that you should not change interfaces on Virtual Gateways, so I guess it messes things up).
    • Do not attempt to deploy the Virtual gateway in Advanced Guided Setup (you will receive errors).
    • Not sure is this was a fluke, but I was unable to configure OSPF in basic mode, however if you switch to advanced mode, you can configure it.
    • I was unsuccessful in using ArubaOS_VGW_10.5.1.0_89166, this device would not register in Aruba Central, I used ArubaOS_VGW_10.4.1.1_89267 for this instruction.
    • Do not click the "Next" button too quickly, you will receive "internal server errors"
    • Have patience, at times it took my 6 hours for the Virtual Gateway's initial sync with the group configuration, once synchronized it works fine and is responsive.

    Steps:

    Prerequisites:

    Warning:

    Following this manual:  Deploying VPNC | Validated Solution Guide (arubanetworks.com), did not result in a working Virtual Gateway, my suggestion is to use the procedure below 😊

    Step 1: Create a new VPNC AOS 10 group for VPNCs and Gateways

    Go to: Global > Groups click the "+" sign in the upper right corner.

    Give your group a name and click "add"

    Step 2: Move Virtual Gateway to this group

    I did not find this still in the manuals but doing it will help you set up the Virtual Gateway as frictionless as possible.

    Go to Global > and click on the "Gear" icon of Groups

    Now move your new Virtual Gateway to the newly created and UNCONFIGURED group

    Click the Move button

    Wait until your device is actually moved to this group and go to the next step.

    Step 3: Go to the Device Configuration of the new group

    Go to Global > Groups > Devices > Configuration

    IMPORTANT! Cancel the guided setup, first you need to verify if we are in Advanced or Basic Mode! As mentioned, you can only create the initial configuration in Basic Mode!

    If the device says Basic Mode in the upper right corner this means you are actually in Advanced Mode. Change it to Basic Mode by clicking on it, and then press the Guided Setup again.

    Step 5 (group level): Set VPNC model

    Due to the fact that there is already a Virtual Gateway in your group you can only select "Virtual Gateway. Select this model type and enable automatic group clustering, then click Next

    Step 6 (group level): Configure Time

    Configure time settings to your region and click next

    Step 7 (group level): Configure DNS

    Configure DNS, I used the settings below but this should be to your specifications, click next