SD-WAN Configuration in Gaia Clish

This section describes the Gaia Clish commands for configuring SD-WAN interfaces on the Security Gateway / each Cluster Member that run the Gaia OS.

For Quantum Spark Appliances that run the Gaia Embedded OS, see the R81.10.X Quantum Spark CLI Reference Guide for 1500, 1600, 1800, 1900, 2000 Appliances.

The "add" command

This command configures the specified value on a new SD-WAN interface.

add interface <Name of Interface> sdwan next-hop <IP Address>

circuit-id <1 - 255>

download-speed <1 - 1000000>

is_mpls {true | false}

nat <IP Address after NAT>

tag <Tag Name>

upload-speed <1 - 1000000>

The "set" command

This command configures the specified value on an existing SD-WAN interface.

set interface <Name of Interface> sdwan

circuit-id <1 - 255>

download-speed <1 - 1000000>

is_mpls {true | false}

nat <IP Address after NAT>

next-hop <IP Address>

tag <Tag Name>

upload-speed <1 - 1000000>

The "delete" command

This command removes the configured value.

delete interface <Name of Interface> sdwan

circuit-id

download-speed

is_mpls

nat

tag

upload-speed

The "show" command

This command shows the configured value.

show interface <Name of Interface> sdwan

circuit-id

download-speed

is_mpls

link-type

nat

next-hop

tag

upload-speed

Parameters for Gaia Clish Commands

Parameter

Description

circuit-id

Optional: Specifies the Circuit ID.

See SD-WAN Circuit ID.

Note - This parameter is available only in these Security Gateway versions:

R82 and higher
R81.20 Jumbo Hotfix Accumulator, Take 79 and higher (PRJ-53464)

download-speed

Optional: Specifies the download speed limit (in Mbps).

See Configuring Steering Behavior > Criteria > WAN Link Utilization > Link Aggregation > Selection Method.

Note - This parameter is available only in these Security Gateway versions:

R82 and higher
R81.20 Jumbo Hotfix Accumulator, Take 79 and higher (PRJ-53464)

is_mpls

Specifies that this interface connects to a Private Link (for example, MPLS)

Note - This parameter is available only in these Security Gateway versions:

R81.20 Jumbo Hotfix Accumulator, Take 76 and lower.
R81.20 without the Jumbo Hotfix Accumulator.

link-type

Shows the WAN Link type.

See WAN Link Mapping.

Note - This parameter is available only in these Security Gateway versions:

R82 and higher
R81.20 Jumbo Hotfix Accumulator, Take 79 and higher (PRJ-53464)

nat

Specifies that an external device or an ISP applies NAT on the source IP address of all traffic from this interface.

In the "add" and "set" commands, enter the applicable IP address after this external NAT, as the peers receive it.

Notes:

In Gaia Portal, this corresponds to the option "Accessible via NAT".
You do not need to configure NAT rules in SmartConsole.

next-hop

Specifies the next hop IP Address for the ISP, to which this interface connects

tag

Optional: Specifies the interface tag.

See the description and the example in WAN Link Mapping.

upload-speed

Optional: Specifies the download speed limit (in Mbps).

See Configuring Steering Behavior > Criteria > WAN Link Utilization > Link Aggregation > Selection Method.

Note - This parameter is available only in these Security Gateway versions:

R82 and higher
R81.20 Jumbo Hotfix Accumulator, Take 79 and higher (PRJ-53464)