SD-WAN

last person joined: 2 days ago 

Forum to discuss HPE Aruba EdgeConnect SD-WAN and SD-Branch solutions. This includes SD-WAN Orchestration WAN edge network functions - routing, security, zone-based firewall, segmentation and WAN optimization, micro-branch solutions, best practics, and third-party integrations. All things SD-WAN!
Back to discussions
Expand all | Collapse all

VIA clients over site-to-site tunnel

This thread has been viewed 0 times

  • 1.  VIA clients over site-to-site tunnel

    Posted Feb 19, 2019 06:30 AM

    Hi.

     

    I have a 7005 sd-wan branch gw managed by Central which connects successfully to a 3rd party with a site-to-site ipsec tunnel. Is it possible to route traffic from VIA clients into the site-to-site tunnel while also source-nat the traffic (so that there is no need to add the VIA address pool to the ipsec policy)?

     

    I successfully get the 3rd party ip-subnet as a route on the VIA client, so the traffic reaches the 7005, but I don't know wheter the traffic gets encrypted in the site-to-site tunnel. I'm not even sure it is nat'ed correctly.

     

    Any configuration hints or comments are welcome :)

     

    -Vegard