1. Features Guide
  2. Release 2.4 Features
  3. Multiple VLAN Segment on Common WAN link

Multiple VLAN Segment on Common WAN link

Oracle SD-WAN Edge Release 2.4 allows multiple VLANs and gateways to be configured on the same WAN link by supporting multiple Access Interfaces. Each “Access_Interface” will support a name, a VIP address, a gateway and the option to enable Proxy ARP. An example of these topologies is shown in Figure 10, below, where with the addition of this new feature Access Interfaces have been configured for VLANs g and b and Edge can perform Proxy ARP for routers g and b.

In previous Edge releases, the WAN link and WAN link gateway were on a single VLAN, causing problems for customers that segmented traffic (e.g. Intranet vs. Internet) on different VLANs for security reasons. Additionally, if Proxy ARP was enabled on a WAN link, it would only work properly for hosts that resided on the corresponding VLAN segment. If the WAN link was assigned to VLAN A and the gateway went down, the users on VLAN A would have connectivity but those on other VLAN would not.

Diagram showing a WAN link with different VLANs and a WAN link with different subnets.

This feature may be set in the Configuration Editor, as shown in Figure 11 below. Note that the first configured WAN link access interface is set to be the Primary by default and additional access interfaces are defined to be excluded. The user would then be expected to verify the primary access interface link, as well as any interfaces to be configured as secondary. When the primary access interface gateway is not reachable, the appliance would use the access interface configured as secondary.

INSERT ALT TEXT

For more information on the Oracle SD-WAN Edge Configuration Editor, please see the APN Configuration Editor User's Guide.

These interfaces are used to define which gateway the appliance would use to forward conduit frame for the corresponding WAN link. These options are defined under the WAN link, Set Properties field of a WAN link definition.

To edit the configuration manually, the options associated with this feature are included below:

add access_interface name=CL3_WL0_access_interface_1

Image showing configuration options.

The Proxy ARP capability is configured under the Access Interface and is shown above. “True” would indicate Proxy ARP is enabled and “false” would indicate that the feature is disabled for the Access Interface. Proxy ARP needs to be enabled for local side subnets.

primary_conduit_access_interface = Text

The name of the access interface to be used as the primary access interface for this WAN Link. Mandatory.

secondary_conduit_access_interface = Text

The name of the access interface to be used as the secondary access interface for this WAN Link.

For more information on the Oracle SD-WAN Edge configuration file, please see the APN Configuration Reference.

Design Considerations:

• Enable Proxy ARP for local side subnets