Cisco Catalyst 8000V as a Cloud Gateway for a Fabric


Note
To achieve simplification and consistency, the Cisco SD-WAN solution has been rebranded as Cisco Catalyst SD-WAN. In addition, from Cisco IOS XE SD-WAN Release 17.12.1a and Cisco Catalyst SD-WAN Release 20.12.1, the following component changes are applicable: Cisco vManage to Cisco Catalyst SD-WAN Manager, Cisco vAnalytics to Cisco Catalyst SD-WAN Analytics, Cisco vBond to Cisco Catalyst SD-WAN Validator, Cisco vSmart to Cisco Catalyst SD-WAN Controller, and Cisco Controllers to Cisco Catalyst SD-WAN Control Components. See the latest Release Notes for a comprehensive list of all the component brand name changes. While we transition to the new names, some inconsistencies might be present in the documentation set because of a phased approach to the user interface updates of the software product.

Information About Cisco Catalyst 8000V as a Cloud Gateway for a Fabric

Table 1. Feature History

Feature Name

Release Information

Description

Cisco Catalyst 8000V as a Cloud Gateway for a Fabric

May 2023

This feature lets you configure a Cisco Catalyst 8000V device as the cloud gateway for connecting a virtual private cloud with a private data center.

The Cisco Catalyst 8000V serves as the cloud gateway for connecting a virtual private cloud (VPC) with a private data center.

You can configure a Cisco Catalyst 8000V device as a cloud gateway in the following ways, depending on your requirements:

  • Create a new fabric and add a Cisco Catalyst 8000V device as the cloud gateway for each region in the fabric.

  • Add a Cisco Catalyst 8000V device to each region in an existing fabric.

  • Replace Cisco vEdge Cloud in an existing fabric with a Cisco Catalyst 8000V device.

Use Cases for Cisco Catalyst 8000V as a Cloud Gateway for a Fabric

  • Integrating your fabric with a TACACS or RADIUS server for authentication, authorization, and accounting (AAA) when the server resides in a private data center that you access through a VPN.

  • Sending syslog information to a private data center that you access through a VPN.

Prerequisites for Cisco Catalyst 8000V as a Cloud Gateway for a Fabric

  • You must have a Cisco SD-WAN Manager administrator username and password.

  • You must have a Cisco Smart Account administrator username and password.

  • You must know the serial number of the Cisco Catalyst 8000V that you are adding to a fabric.

Restrictions for Cisco Catalyst 8000V as a Cloud Gateway for a Fabric

  • You must be using a fabric version that is later than Version 20.6.

Configure Cisco Catalyst 8000V as a Cloud Gateway for a Fabric

Before You Begin

Obtain the serial number of each Cisco Catalyst 8000V device that you are configuring. To do so, go to Cisco Software Central and click Manage Devices under Network Plug and Play in the Smart Licensing area.

Configuration Procedures

The following table describes the procedures for configuring a Cisco Catalyst 8000V device as a cloud gateway in various scenarios. For each scenario, the table provides the general steps, and references to more detailed information. See the scenario that applies to your requirements.

Scenario

General Steps

Reference

Create a new fabric and add a Cisco Catalyst 8000V device as the cloud gateway for each region in the fabric.

Step 1: In the Cisco Catalyst SD-WAN Portal, create a new fabric.

See Create a Cisco Catalyst SD-WAN Cloud Hosted Fabric.

Step 2: In the Cisco Catalyst SD-WAN Portal, configure a cloud gateway.

See Configure a Cloud Gateway in the Cisco Catalyst SD-WAN Portal.

Add a Cisco Catalyst 8000V device to each region in an existing fabric.

In the Cisco Catalyst SD-WAN Portal, configure a cloud gateway.

See Configure a Cloud Gateway in the Cisco Catalyst SD-WAN Portal.

Replace Cisco vEdge Cloud with a Cisco Catalyst 8000V device in an existing fabric.

Step 1: In the Cisco Catalyst SD-WAN Portal, configure a cloud gateway.

See Configure a Cloud Gateway in the Cisco Catalyst SD-WAN Portal.

Step 2: (Optional) Open a support case with Cisco to request that the existing Cisco vEdge Cloud be removed.

See Open a Support Case for a Fabric Update.

Configure a Cloud Gateway in the Cisco Catalyst SD-WAN Portal

  1. Log in to the Cisco Catalyst SD-WAN Portal with administrator credentials.

  2. Click the fabric for which you want to configure a cloud gateway.

  3. From the Actions drop-down menu, choose Add Cloud Gateways.

  4. Configure the fields that the following table describes.


    Note
    The Cisco Catalyst SD-WAN Portal does not save the usernames and passwords that you enter in these fields.

    Field

    Description

    vManage Admin Credentials

    Username

    Enter your Cisco SD-WAN Manager administrator username.

    Password

    Enter your Cisco SD-WAN Manager administrator password.

    Smart Account Admin Credentials

    Username

    Enter your Cisco Smart Account administrator username.

    Password

    Enter your Cisco Smart Account administrator password.

    Cloud Gateway Serials

    Serial

    The number of Serial fields that appear matches the number of regions in your fabric.

    In each field, enter the serial number of the Cisco 8000V to serve as a cloud gateway.

    Each serial number must be unique.

    Custom IPs

    System IPs

    The number of System IPs fields that appear matches the number of regions in your fabric.

    (Optional) In each field, enter an IP address to configure a system interface for the cloud gateway that you are adding.

    A system interface IP address is a persistent address that identifies the device. It is similar to a router ID on a regular router, which is the address that is used to identify the router from which packets originated.

    Specify a system IP address as an IPv4 address in decimal four-part dotted notation. Specify just the address; the prefix length (/32) is implicit.

    A system IP address can be any IPv4 address except for 0.0.0.0/8, 127.0.0.0/8, and 224.0.0.0/4, and 240.0.0.0/4 and later.

    If you do not specify a system IP address, the Cisco Catalyst SD-WAN Portal assigns a system random IP address, which may be a duplicate of the IP address of another device.

    To ensure that a cloud gateway is provisioned without creating a conflict in the fabric, ensure that an IP address that you enter is unused in the existing fabric.

    Enable Webhook via Cloud Gateway

    This option applies only to a Dedicated fabric for which AWS is the cloud provider.

    Check this check box to enable Cisco SD-WAN Manager to route webhook messages from CCisco SD-WAN Manager through a cloud gateway

    Enabling this option is useful when your webhook server is hosted in your private network and no internet traffic is forwarded to this server. When this option is enabled, a connection is provisioned between your SD-WAN fabric and your private network.

    After enabling this option, add an entry to the routing table on the Cisco SD-WAN Manager server to forward network traffic to the webhook server through the cloud gateway. For instructions, see the email that you receive after the cloud gateway is provisioned.

  5. Click Submit.

Open a Support Case for a Fabric Update

To open a support case for a fabric update, go to Cisco Support Case Manager, log in with your Cisco credentials, and click Open New Case.