A VPN connection between the VeloCloud Gateway and the data center firewall (any VPN router) provides connectivity between branches (with VeloCloud Edges installed) and Non-VeloCloud Sites, resulting in ease of insertion, in other words, no customer Data Center installation is required.

The following figure shows a VPN configuration:


Number (from above image) Description
red-1 Primary tunnel
red-2 Redundant tunnel
red-3 Secondary VPN Gateway

VeloCloud supports VPN connectivity to the following third-party firewalls:

  • Cisco ASA
  • Cisco ISR
  • PaloAlto
  • SonicWall
  • Generic Router (Router Based VPN)
  • Generic Firewall (Policy Based VPN)

For information on how to configure a Branch to Non-VeloCloud Site see Configure a Non-VeloCloud Site.