The SD-WAN Gateway runs on a standard hypervisor (KVM or VMware ESXi).

Minimum Server Requirements

To run the hypervisor:

  • CPU: Intel Ivy Bridge or later. 10 or higher total number of cores at 2.0 Ghz is recommended. The CPU must support the AES-NI, SSSE3, SSE4, RDTSC, RDSEED, RDRAND instruction sets.
  • 20+ GB (16 GB is required for SD-WAN Gateway VM memory)
  • 100 GB magnetic or SSD based, persistent disk volume
  • 2 x 1 Gbps (or higher) network interface. The physical NIC card supported are Intel 82599/82599ES and Intel X710/XL710 chipsets (for SR-IOV support).
Note: Deactivate hyperthreading on the hypervisor.

Example Server Specifications

NIC Chipset Hardware Specification
Intel 82599/82599ES HP DL380G9 http://www.hp.com/hpinfo/newsroom/press_kits/2014/ComputeEra/HP_ProLiantDL380_DataSheet.pdf
Intel X710/XL710 Dell PowerEdge R640 https://www.dell.com/en-us/work/shop/povw/poweredge-r640
  • CPU Model and Cores - Dual Socket Intel(R) Xeon(R) Gold 5218 CPU @ 2.30GHz with 16 cores each
  • Memory - 384 GB RAM
Intel X710/XL710 Supermicro SYS-6018U-TRTP+ https://www.supermicro.com/en/products/system/1U/6018/SYS-6018U-TRTP_.cfm
  • CPU Model and Cores - Dual Socket Intel(R) Xeon(R) CPU E5-2630 v4 @ 2.20GHz with 10 Cores each
  • Memory - 256 GB RAM

Required NIC Specifications for SR-IOV Support

Hardware Manufacturer Firmware Version Host Driver for Ubuntu 18.04 Host Driver for ESXi 6.7
Dual Port Intel Corporation Ethernet Controller XL710 for 40GbE QSFP+ 7.0 2.10.19.30 1.8.6 and 1.10.9.0
Dual Port Intel Corporation Ethernet Controller X710 for 10GbE SFP+ 7.0 2.10.19.30 1.8.6 and 1.10.9.0
Quad Port Intel Corporation Ethernet Controller X710 for 10GbE SFP+ 7.0 2.10.19.30 1.8.6 and 1.10.9.0
Dell rNDC X710/350 card nvm 7.10 and FW 19.0.12 2.10.19.30 1.8.6 and 1.10.9.0

Supported Hypervisor Versions

Hypervisor Supported Versions
VMware
  • Intel 82599/82599ES - ESXi 6.7 U3 up to ESXi 7.0. To use SR-IOV, the vCenter and the vSphere Enterprise Plus license are required.
  • Intel X710/XL710 - ESXi 6.7 with VMware vSphere Web Client 6.7.0 up to ESXi 7.0 with VMware vSphere Web Client 7.0.
KVM
  • Intel 82599/82599ES - Ubuntu 16.04 LTS and Ubuntu 18.04 LTS
  • Intel X710/XL710 - Ubuntu 16.04 LTS and Ubuntu 18.04 LTS

SD-WAN Gateway Virtual Hardware Specification

For VMware, the OVA already specifies the minimum virtual hardware specification. For KVM, an example XML file will be provided. The minimum virtual hardware specifications are:

  • 8 vCPUs

    Important: All 8 vCPU cores should be mapped to the same socket with the Cores per Socket parameter set to 8.

  • 16 GB of memory
  • Minimum of one vNICs:
    • The First vNIC is the public (outside) interface, which must be an untagged interface.
    • The Second vNIC is optional and acts as the private (inside) interface that can support VLAN tagging dot1q and Q-in-Q. This interface typically faces the PE router or L3 switch.

    Important: Currently, Partner Gateway VLAN tagging is not supported on SR-IOV interfaces. To support VLAN tagging, use VMXNET3 on ESXi environment or use Linux Bridge with VLAN filtering on KVM

  • Optional vNIC (if a separate management/OAM interface is required).
  • 64 GB of virtual disk.

Firewall/NAT Requirements

Note: These requirements apply if the SD-WAN Gateway is deployed behind a Firewall and/or NAT device.
  • The firewall needs to allow outbound traffic from the SD-WAN Gateway to TCP/443 (for communication with SD-WAN Orchestrator).
  • The firewall needs to allow inbound traffic from the Internet to UDP/2426 (VCMP), UDP/4500, and UDP/500. If NAT is not used, then the firewall needs to also allow IP/50 (ESP).
  • If NAT is used, the above ports must be translated to an externally reachable IP address. Both the 1:1 NAT and port translations are supported.

Git Repository with Templates and Samples

The following Git repository contains templates and samples.

git clone https://bitbucket.org/velocloud/deployment.git