思科SDWAN探秘(5)--设备上线

enable
controller-mode enable

config-transaction
hostname CSR_AliCloud
clock timezone china 8
system
system-ip 204.0.0.1
site-id 130002
organization-name CiscoDMZ
vbond 101.37.116.217
ntp server ntp.aliyun.com
!
interface GigabitEthernet1
 ip address dhcp
!
line vty 0 10
 transport input ssh


commit

vmanage# vshell
vmanage:~$ scp root-ca-chain.pem admin@47.114.54.10:root.pem

request platform software sdwan root-cert-chain install bootflash:root.pem

interface Tunnel1
no shutdown
ip unnumbered GigabitEthernet1
tunnel source GigabitEthernet1
tunnel mode sdwan
exit
sdwan
interface GigabitEthernet1
tunnel-interface
encapsulation ipsec
 allow-service sshd
 color public-internet
commit

CSR# request platform software sdwan vedge_cloud activate chassis-number <Chassis-Number> token <token>

enable
controller-mode enable

Router# pnpa service discovery stop

config-transaction
hostname CE8300A
clock timezone china 8
ntp server 10.74.5.1
system
system-ip 203.0.0.1
site-id 130001
organization-name CiscoDMZ
vbond 101.37.116.217
interface GigabitEthernet0/0/0
ip address 10.74.6.133 255.255.255.0
no shut
ip route 0.0.0.0 0.0.0.0 10.74.6.1
commit

interface Tunnel1
no shutdown
ip unnumbered GigabitEthernet0/0/0
tunnel source GigabitEthernet0/0/0
tunnel mode sdwan
exit
sdwan
interface GigabitEthernet0/0/0
tunnel-interface
encapsulation ipsec
color mpls
commit

request platform software sdwan root-cert-chain install bootflash:root-ca-chain.pem

vrf definition 101
 rd 1:101
 address-family ipv4
  exit-address-family
 !
!


interface GigabitEthernet0/0/1
 no shutdown
 vrf forwarding 101
 ip address 192.168.101.1 255.255.255.0
exit
interface Loopback101
 no shutdown
 vrf forwarding 101
 ip address 192.168.222.1 255.255.255.255
exit


sdwan
 omp
   address-family ipv4 vrf 101
   advertise connected
commit