Setting Up SD-WAN Lab in Cisco Modeling Labs (CML)

By /

Listen to this Post

If you are looking to set up an SD-WAN lab in Cisco Modeling Labs (CML), you can use the script shared in the GitHub repository below. This setup allows you to configure HQ and Branches and test major SD-WAN features easily.

🔗 GitHub Repository: SD-WAN Lab Script

SD-WAN Lab Includes:

  • Setup Configuration Groups
  • TLOC / OMP Routes
  • Color Restrict
  • Public and Private TLOC Colors
  • BFD (Bidirectional Forwarding Detection)
  • Underlay vs Overlay Routing
  • VPNs and Labels
  • Localized Policy and Centralized Policy
  • TLOC Extensions
  • SD-WAN Use Cases
  • AAR (Application Aware Routing)
  • And many more…

Practice Verified Commands and Codes:

1. Basic SD-WAN Configuration:

vEdge# configure
vEdge(config)# vpn 0
vEdge(config-vpn)# interface eth0
vEdge(config-interface)# ip address 192.168.1.1/24
vEdge(config-interface)# tunnel-interface
vEdge(config-tunnel-interface)# encapsulation ipsec
vEdge(config-tunnel-interface)# color public-internet
vEdge(config-tunnel-interface)# commit

2. OMP Route Advertisement:

vEdge# show omp routes
vEdge# show omp peers

3. BFD Configuration:

vEdge(config)# bfd
vEdge(config-bfd)# interface eth0
vEdge(config-bfd-interface)# interval 500
vEdge(config-bfd-interface)# multiplier 3
vEdge(config-bfd-interface)# commit

4. Application Aware Routing (AAR):

vEdge(config)# policy
vEdge(config-policy)# application-list APP_LIST
vEdge(config-application-list)# app facebook
vEdge(config-application-list)# app twitter
vEdge(config-application-list)# commit

5. Service Insertion (Firewall/IPS):

vEdge(config)# service FW
vEdge(config-service)# service-type firewall
vEdge(config-service)# commit

What Undercode Says:

Setting up an SD-WAN lab in Cisco Modeling Labs (CML) is an excellent way to gain hands-on experience with SD-WAN technologies. The GitHub repository provided offers a comprehensive script to configure HQ and Branch setups, allowing you to test various SD-WAN features such as TLOC routes, BFD, VPNs, and Application Aware Routing (AAR).

To further enhance your lab experience, consider integrating additional devices like FTD/ASA for firewall and IPS testing. The free version of CML supports up to 5 nodes, which is sufficient for basic testing. However, for end-to-end testing, a licensed version of CML is recommended.

Here are some additional Linux and Windows commands that can be useful in your SD-WAN lab:

  • Linux Commands:
    </li>
</ul>

<h1>Check network interfaces</h1>

ifconfig

<h1>Test connectivity</h1>

ping 192.168.1.1

<h1>Trace route</h1>

traceroute 192.168.1.1

<h1>Check open ports</h1>

netstat -tuln
    • Windows Commands:
      [cmd]
      :: Check IP configuration
      ipconfig

    :: Test connectivity
    ping 192.168.1.1

    :: Trace route
    tracert 192.168.1.1

    :: Check open ports
    netstat -an
    [/cmd]

    For more advanced configurations, refer to the official Cisco documentation and the GitHub repository provided. This lab setup is a great way to understand the intricacies of SD-WAN and prepare for real-world deployments.

    🔗 Additional Resources:

    References:

    Hackers Feeds, Undercode AIFeatured Image

Related Posts: