SD-WAN

From Wiki of WFilter NG Firewall
Jump to: navigation, search

Contents

1 SD-WAN

SD-WAN is an integration of the ZeroTier networking. With SD-WAN, you are able to:

  • Network virtualization: setup SD-WAN subnets and join multiple devices/networks together.
  • End-to-End encryption
  • Setup VPN without a static public IP address.

2 Server Settings

Server settings of WFilter SD-WAN can be accessed in WFilter Cloud Service.

Sdwan001.png

2.1 Networks

Click "New network" to create a new sdwan subnet.

Sdwan network01.png

  • Net ID: SD-WAN network id
  • Net Name: network description
  • Start/End IP: DHCP IP address range

Sdwan network02.png

To join multiple networks together, you need to setup routing policies. As shown below, network "192.168.1.0/24" can be reached via "10.200.188.1", while network "192.168.2.0/24" can be reached via "10.200.188.2". So these two networks are reachable from each side.

Sdwan network03.png

3 Client Settings

In WFilter NGF, you can join SD-WAN networks in the "VPN"->"SD-WAN" module.

  • SD-WAN secret: SD-WAN client id
  • Zone: zone firewall ACL rules will be applied. Please check Firewall Rules

Sdwan client01.png

Sdwan client02.png

Sdwan client03.png

Client is denied by default, you also need to authorize clients in the server side.

Sdwan client04.png

4 Cross-Platform clients

WFilter's SD-WAN networks are compatible with ZeroTier clients, and you may download clients for other operating systems here: zerotier download

Retrieved from "http://wiki.wfilterngf.com/index.php?title=SD-WAN&oldid=1203"
Personal tools
Namespaces

Variants
Actions
Navigation
Tools