SD-WAN Configuration in Gaia Clish

This section describes the Gaia Clish commands for configuring SD-WAN interfaces on the Security Gateway / each Cluster Member that run the Gaia OS.

For Quantum Spark Appliances that run the Gaia Embedded OS, see the R81.10.X Quantum Spark CLI Reference Guide for 1500, 1600, 1800, 1900, 2000 Appliances.

The "add" command

This command configures the specified value on a new SD-WAN interface.

add interface <Name of Interface> sdwan next-hop <IP Address>

      circuit-id <1 - 255>

      download-speed <1 - 1000000>

      is_mpls {true | false}

      nat <IP Address after NAT>

      tag <Tag Name>

      upload-speed <1 - 1000000>

The "set" command

This command configures the specified value on an existing SD-WAN interface.

set interface <Name of Interface> sdwan

      circuit-id <1 - 255>

      download-speed <1 - 1000000>

      is_mpls {true | false}

      nat <IP Address after NAT>

      next-hop <IP Address>

      tag <Tag Name>

      upload-speed <1 - 1000000>

The "delete" command

This command removes the configured value.

delete interface <Name of Interface> sdwan

      circuit-id

      download-speed

      is_mpls

      nat

      tag

      upload-speed

The "show" command

This command shows the configured value.

show interface <Name of Interface> sdwan

      circuit-id

      download-speed

      is_mpls

      link-type

      nat

      next-hop

      tag

      upload-speed

Parameters for Gaia Clish Commands

Parameter

Description

circuit-id

Optional: Specifies the Circuit ID.

See SD-WAN Circuit ID.

This parameter is available in these Security Gateway versions:

download-speed

Optional: Specifies the download speed limit (in Mbps).

See Configuring Steering Behavior > Criteria > WAN Link Utilization > Link Aggregation > Selection Method.

This parameter is available in these Security Gateway versions:

is_mpls

Specifies that this interface connects to an MPLS Link.

link-type

Shows the WAN Link type.

See WAN Link Mapping.

This parameter is available in these Security Gateway versions:

nat

Specifies that an external device or an ISP applies NAT on the source IP address of all traffic from this interface.

In the "add" and "set" commands, enter the applicable IP address after this external NAT, as the peers receive it.

Notes:

  • In Gaia Portal, this corresponds to the option "Accessible via NAT".

  • You do not need to configure NAT rules in SmartConsole.

next-hop

Specifies the next hop IP Address for the ISP, to which this interface connects

tag

Optional: Specifies the interface tag.

See the description and the example in WAN Link Mapping.

upload-speed

Optional: Specifies the download speed limit (in Mbps).

See Configuring Steering Behavior > Criteria > WAN Link Utilization > Link Aggregation > Selection Method.

This parameter is available in these Security Gateway versions: