- DMVPN (4)
- IPv6 (1)
- MPLS (1)
- Network Automation (19)
- Network Services (8)
- Quality of Service (2)
- SDN (10)
recent posts
- DMVPN Dual Hub Dual Cloud – Full Redundancy Design
- DMVPN Dual Hub Single Cloud: Hub Redundancy Without Losing Path Control
- DMVPN Single Hub Dual Cloud: Why Redundancy Does Not Always Mean Optimal Failover
- DMVPN Single Hub Single Cloud: Design Behavior Across Phase 1, 2 and 3
- L3VPN is not just about labels, MP-BGP, or VRFs
- IPv6 Prefix Delegation and SLAAC
- WFQ, CBWFQ and LLQ Explained in a Practical Way
- How Traffic is Classified, Marked, and Queued
- NAT
- Proxy ARP
- DNS and HTTP GET with IP SLA
- Cisco IRB (Integrated Routing and Bridging)
- GLBP Weighting
- DNS Server on Cisco IOS
- DHCP Proxy over PPP
- ARP authorized
- QoS in Cisco SD-WAN
- Application-based traffic steering And AAR
- Creating Extranets and Access to Shared Services
- Enforcing Security Perimeters with Service Insertion
- Cisco SD-WAN TLOC Extension
- Cisco SD-WAN Security Features
- Traffic Engineering at Sites with Multiple Routers
- Isolating Guest Users from the Corporate VPN
- Cisco SD-WAN Hub-and-Spoke Topology
- Cisco SD-WAN Onboarding
- AI-Powered Network Assistant
- Ansible Playbook
- Ansible Gathering Facts
- AI-Powered Interface Health Checker with pyATS and OpenAI
-
In this lab, I demonstrate how TLOC Extension works in Cisco SD-WAN using a simple branch topology. At Site3, I have two WAN Edge routers: By default, each WAN Edge can only use its own transport interface.However, in many real-world deployments, we want both routers to share available transports. TLOC Extension allows a WAN Edge…
-
Cisco SD-WAN is often discussed from the perspective of routing, transport selection, and centralized management.However, one of its major strengths is the ability to integrate networking and security into a unified WAN architecture. In many enterprise environments, WAN edge routers are not only responsible for transporting traffic, but also for enforcing security policies at branch…
-
In this lab, I am using the Cisco SD-WAN Sandbox environment to demonstrate how TLOC Preference can be used for traffic engineering. In many enterprise WAN environments, a site has multiple WAN transports, such as: Although Cisco SD-WAN can dynamically build tunnels across all available transports, we may want to prefer one path over another…
-
In order to Isolate a vpn from other vpn we should use vpn Membership in Topology section of vmanage. VPN membership (Who receives routes, it is route visibility control with filtering for Segmentation).This determines which VPN routes are advertised to which sites. [helps define who can join which VPN and who can learn its routes.] It…
-
In this lab, I am using the Cisco SD-WAN Sandbox environment to build and test a Hub-and-Spoke topology. By default, Cisco SD-WAN allows sites to exchange routes dynamically and build direct communication paths between branches.However, in many enterprise environments, this is not always the desired design. Here is the topology: In my scenario, I want…
