You can configure a Gateway to handoff to Partners. The Gateway acts as a Partner Gateway and you can configure the Hand off Interface, Static Routes, BGP, BFD, and other settings.

Ensure that the Gateway to be handed off to the Production Orchestrator is assigned with Partner Gateway Role and Static Routes configured as per your topology requirements.

In the Orchestrator portal, click Gateways and click the link to an existing Gateway. In the Properties section of the selected Gateway, you can enable the Partner Gateway role as shown in the following screenshot.

The Production Orchestrator address is advertised as secure routes by configuring subnets or static routes for the Partner Gateway. For more information on how to configure static routes, see Configure Gateways section in the VMware SD-WAN Operator Guide published at https://docs.vmware.com/en/VMware-SD-WAN/index.html.

To configure the handoff settings, go to the Customer Configuration page.

  • In the Operator portal, click Manage Customers.
  • Select the customer and click Actions > Modify or click the link to the customer.
  • In the customer or Enterprise portal, click Configure > Customer.
  • In the Customer Configuration, navigate to the Gateway Pool section and select the Enable Partner Handoff checkbox.

Configure the following settings:

Customer BGP Priority

  • Select Enable Community Mapping to set the Community attributes, which would be tagged in the BGP advertised routes.
  • The Community mapping is set to all the segments by default. If you want to configure the Community attributes for a specific segment, choose Per Segment, and select the Segment from the drop-down list.
  • Select Community Additive checkbox to enable the additive option associated with a particular auto community configuration. This option preserves the incoming community attributes for a prefix received from the overlay and appends the configured auto community to the prefix, on the Partner Gateway. As a result, the MPLS PE side receives prefixes with all the community attributes including the auto community attributes.
  • Enter the Community attributes in the Community and Community 2 fields. Click the Plus(+) Icon to add more community attributes.

Configure Hand Off

  • By default, the handoff configuration is applied to all the Gateways. If you want to configure a specific Gateway, choose Per Gateway and select the Gateway from the drop-down list.
  • By default, the handoff configuration is applied to all the Segments. If you want to configure a specific Segment, select the Segment from the drop-down list.
  • For configuring all the Gateways, click the Edit option. If you have selected a particular Gateway, click the Click here to configure link.

The Hand Off Details window appears, and you can configure the following:

Option Description
Hand Off Interface
Tag Type Choose the tag type which is the encapsulation in which the Gateway hands off customer traffic to the Router. The following are the types of tags available:
  • None– Untagged. Choose this during single tenant handoff or a handoff towards shared services VRF.
  • 802.1q – Single VLAN tag.
  • 802.1ad / QinQ(0x8100) / QinQ(0x9100) – Dual VLAN tag.
Transport LAN VLAN This option is available only when you choose the tag type as 802.1ad / QinQ(0x8100) / QinQ(0x9100). Choose the type of tag to configure the transport VLANs.
C-Tag (Customer tag) Enter the Customer VLAN tag
S-Tag (Service tag) Enter the service-provider-defined VLAN tag
Local IP Address Enter the Local IP address for the logical Handoff interface.
Use for Private Tunnels Select the checkbox so that private WAN links connect to the private IP address of the Partner Gateway. If private WAN connectivity is enabled on a Gateway, the Orchestrator audits to ensure that the local IP address is unique for each Gateway within an enterprise.
Advertise via BGP Select the checkbox to automatically advertise the private WAN IP of the Partner Gateway through BGP. The connectivity is provided using the existing Local IP address.
Static Routes – Click the plus(+) Icon to add more routes.
Subnets Enter the IP address of the Static Route Subnet that the Gateway should advertise to the Edge.
Cost Enter the cost to apply weightage on the routes. The range is from 0 to 255.
Encrypt Select the checkbox to encrypt the traffic between Edge and Gateway.
Hand off Select the handoff type as VLAN or NAT.
Description Optionally, enter a descriptive text for the static route.
BFD
Enable BFD Select the checkbox to enable BFD subscription for BGP neighbors and to configure the BFD settings.
Peer Address Enter the IP address of the remote peer to initiate a BFD session.
Local Address Enter a locally configured IP address for the peer listener. This address is used to send the packets.
Detect Multiplier Enter the detection time multiplier. The remote transmission interval is multiplied by this value to determine the detection timer for connection loss. The range is from 3 to 50 and the default value is 3.
Receive Interval Enter the minimum time interval, in milliseconds, at which the system can receive the control packets from the BFD peer. The range is from 300 to 60000 milliseconds and the default value is 300 milliseconds.
Transmit Interval Enter the minimum time interval, in milliseconds, at which the local system can send the BFD control packets. The range is from 300 to 60000 milliseconds and the default value is 300 milliseconds.
BGP
Enable BGP Select the checkbox to enable BGP and set up the BGP configuration.
Customer ASN Enter the customer Autonomous System Number.
Neighbor IP Enter the IP address of the configured Neighbor network.
Neighbor-ASN Enter the ASN of the Neighbor network.
Secure BGP Routes Select the checkbox to enable encryption for data-forwarding over BGP routes.
BGP Inbound/Outbound Filters – Click the plus(+) Icon to add more Filters.
Type (Match) Choose the type of the BGP attribute to be considered for matching with the traffic flow. You can choose either Prefix or Community.
Value Enter the value according to the BGP attribute selected as Type.
Exact Match Select the checkbox for matching the attributes exactly.
Type (Action) Choose the action to be performed if the match is True. You can either Permit or Deny the traffic.
Set

You can set the values of the attributes for the routes matching the filter criteria.

Choose from the following attributes, and enter the corresponding values to be set for the matching routes:

  • None – The attributes of the matching routes remain the same.
  • Local Preference
  • Community – You can also enable the Community Additive option.
  • Metric
  • AS-Path-Prepend
BGP Optional Settings
BFD Select the checkbox to subscribe to the BFD session.
Router ID Enter the Router ID to identify the BGP Router.
Keep Alive Enter the BGP Keep Alive time in seconds. The default timer is 60 seconds.
Hold Timers Enter the BGP Hold time in seconds. The default timer is 180 seconds.
Disable AS-PATH Carry Over Select the checkbox to disable AS-PATH carry over, which influences the outbound AS-PATH to make the L3-routers prefer a path towards a PE. If you select this option, ensure to tune your network to avoid routing loops. It is recommended not to select this checkbox.

Click Update to save the settings. In addition, click Save Changes in the Customer Configuration page to activate the settings.