Citrix SD-WAN and Azure Virtual WAN brief demo

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

hi everyone i'll run through two demonstrations that will highlight how we enable our customers to migrate to azure cloud um and specifically for these demos um it's it's focused on how we automate the process and allow an admin to quickly bring up the network that enables that connectivity this first use case is geared towards high bandwidth demand scenarios leveraging active passive ipsec tunnels between sd-wan devices that are on-prem connecting to azure virtual lan hubs that are in your azure subscription okay so as mentioned previously in this presentation one way is to have citrix sd1 devices on-prem establishing those tunnels to azure virtual land for quick and easy network connectivity from site locations to azure regions first i'll demonstrate how easy that automation process is by leveraging sd-wan orchestrator to configure both sd-wan devices and the azure subscription as endpoints of these ipsec tunnels so configuration is simple we'll start in our azure portal where i've already provisioned our virtual end resource and within that i have created a hub in one of the available regions this just takes a few clicks to create but it does take about 30 minutes to provision so i've done this ahead of time so azure does allow one hub per region and for that hub i've made sure to enable the site to site vpn function which will be used to establish ipsec tunnels to branch office sd-wan devices we've also created a service principle for azure virtual wan allowing sd-wan orchestrator to authenticate to azure apis that enable for automated connectivity between and sd-wan devices a registered app was also created in the same service group resource group as the virtual win with appropriate role permissions okay so now on sd1 orchestrator portal we can complete the configuration i'm starting with the sd-wan solution already deployed in this environment we can globally enable a delivery service of azure virtual lan by simply allocating a percentage of internet when link types this centrally enables it for potentially thousands of remote office sites with internet links next we'll input the azure subscription credentials which allows that communication via api between orchestrator and the azure subscription so with those components in place we can make the association between the available azure virtual when in our subscription and the branch sites available in orchestrator so as we add a site that will be the end point to these ipsec tunnels the table will populate with the virtual win information pulled from that azure subscription you'll be able to select your available virtual end resource and hub from the subscription then associate the sites this is a simple lab with minimal amount of sites but here you can select multiple sites simultaneously so that the same api requests are issued across all the targeted sites and that's where the value of the solution comes from the automating a lot of the work that typically would have to be done manually in order to define endpoints of these ipsec tunnels both in azure and on-prem so the rest is automated by orchestrator it's leveraging api communication between the two cloud services and the status will update as it goes through the various stages of deployment updating the remote site devices with ipsec configuration so that the remote sites have an entry point into workloads available in azure v-nets through the sd-wan provided tunnels

Info

Channel: Citrix SD-WAN Solution

Views: 347

Rating: undefined out of 5

Keywords:

Id: NpNB16PkuS0

Channel Id: undefined

Length: 4min 5sec (245 seconds)

Published: Thu Dec 03 2020