From the course: Implementing Cisco Software-Defined Wan (SD-WAN) for your Enterprise and Cloud
Unlock this course with a free trial
Join today to access over 24,600 courses taught by industry experts.
VPN membership policy - Cisco Tutorial
From the course: Implementing Cisco Software-Defined Wan (SD-WAN) for your Enterprise and Cloud
VPN membership policy
- [Instructor] In this lesson, we're going to talk about the VPN membership policy. Now, by default, when you provision a VPN feature template to a edge device, the vSmarts will then advertise all the routes for that VPN to it. So this is a way that we can actually control that. So basically the VPN membership policy is going to specify which VPNs will be permitted to join the fabric from that site. So any VPN that's not identified in that VPN membership will not be rejected at that site, and therefore, will not be installed. So typically this is going to be used as a method of containing traffic locally at a site, i.e., the guest network. We've talked about that while we were using ACLs, and we talked about that in the data policy lesson where we're trying to use that to contain the traffic flows. This is another method of how we can do this, okay? Some people actually use this as a method of protecting sensitive VPNs from being provisioned at other locations by mistake or through…
Contents
-
-
-
-
-
-
-
-
-
(Locked)
Learning objectives1m 2s
-
(Locked)
Policy overview15m 59s
-
(Locked)
Access control lists (ACLs)23m 17s
-
(Locked)
Route policy26m 57s
-
(Locked)
Traffic data policy overview15m 26s
-
(Locked)
Traffic data policy configuration24m 46s
-
(Locked)
Application pinning with local TLOCs17m 58s
-
(Locked)
Application pinning with remote TLOCs14m 11s
-
(Locked)
VPN membership policy10m 22s
-
(Locked)
Topology policy (hub and spoke)17m 34s
-
(Locked)
Customized topology policy (hub and spoke)21m 47s
-
(Locked)
Dynamic on-demand tunnels17m 6s
-
(Locked)
Advanced topology policies (multi-region)30m 47s
-
(Locked)
Traffic engineering with topology policies18m 41s
-
(Locked)
Route leaking (shared services)23m 15s
-
(Locked)
Service chaining15m 29s
-
(Locked)
Application aware routing (AAR), part 130m 11s
-
(Locked)
Application aware routing (AAR), part 215m 50s
-
(Locked)
Policy review4m 44s
-
(Locked)
-
-
-
-
-
-
-
-