Product Documentation

Manual Secure Peering Initiated from EE Appliance at DC Site and Branch EE Appliance

Aug 09, 2017

This deployment configures DC site EE appliance in LISTEN ON mode and Branch site EE appliance in CONNECT TO mode.

Configuration

To configure auto secure peering initiated from an EE appliance at DC site and EE appliance at Branch site:

     1.  Upload CA Certificate and CA Key Certificate obtained from authentic certificate and provide to SD-WAN as shown below.

localized image
localized image

     2.  On a new EE appliance at the DC site, in the SD-WAN web GUI, go to Configuration > Secure Acceleration > Secure Peering.

localized image

     3.  Configure keystore by providing the keystore password or by disabling the keystore.

localized image
localized image
localized image

     4.    Enable secure peering by selecting CA Certificate radio button and providing uploaded CA and CA Key pair certificates appropriately as shown below.

localized image

     5.  Provide Remote machine’s Virtual IP along with Port 443 as shown below.

localized image

Monitoring

          1.  To validate if the Private CA and Private Certificate Key pair is generated successfully, review the information below.

localized image

          2.  On partner appliance, View Secure Partner Information on the Enterprise Edition appliance under Monitoring > Partners > Secure Partners page.

localized image

Troubleshooting

     1.    View Secure Partner Success / Failure Information on the Enterprise Edition Appliance under Monitoring > WAN Optimization > Partners > Secure Partners page.

localized image