In SD-WAN mesh topology, all branch offices, data centres, and cloud locations are directly connected to each other over the SD-WAN network. This means that traffic between sites does not have to pass through a central hub, making communication faster and more efficient.
How It Works:
Each site (branch, HQ, cloud, etc.) has an SD-WAN router.
These routers establish direct tunnels to each other.
Traffic between sites takes the shortest and best-performing path.
Key Benefits:
✅ Low Latency – Since traffic doesn’t have to go through a central hub, communication is faster.
✅ Redundancy – If one link fails, traffic can automatically take another path.
✅ Better Performance – Sites can talk to each other directly, improving application speed.
prerequisite for Configuring SD-WAN MESH in RAY
- Spoke Device (Preferably with a static public IP) (Also Optional)
- Second Spoke Device
For both locations, the up-link and LAN segment should be configured. For the First Spoke device, we always recommend using a static public IP, though it is optional. For the Spoke device, any up-link will be sufficient; this can also be achieved using a SIM card.
In this example, we have demonstrated a single spoke device and a second Spoke device.
Configuration
To create an SD-WAN, navigate to the Cluster Parent Level. When SD-WAN is created at the parent level, you will have visibility of all child cluster devices, making it easier to create tunnels.
Steps to Create SD-WAN:
- Go to your Parent Cluster > SD-WAN
- Click on +Create SD-WAN Network
A pop-up will open. Enter the required details:
- Name: Tunnel name
- Description: Tunnel description
- CIDR: Tunnel IP, which each device will receive automatically from the given network. Both the network IP and subnet can be specified.
- SLA: Default SD-WAN SLA
- Topology: MESH
- Does the Hub have a public IP? Select this option if the HUB device has a static public IP.
- Enable WAN Optimisation: Select this option if you want to use WAN optimisation algorithms.
- MTU: Select the MTU size for the tunnel.
- Cipher: Select ChaChaPoly or aes.
Now empty tunnel will create without any member in it.
Click on Action button > View Members
From here you can add members like HUB and Spoke
Click on +Add Appliance
Now, First we will add HUB Device.
For First Step : Add Appliance
- Name : Enter First Spoke Device name
- Appliance : Select First Spoke Device mac address
- Appliance Public IP : Enter Static public ip if have any
- Type : MESH will be by default for all device
- Advanced : Select Packet Cloning
now click on next
Step 2: Add Subnets
In this step, select the local LAN subnets that you want to share with other devices within the same tunnel.
In this example, I have selected First LAN Segment. These subnets will be available on the other Spoke device, allowing users to reach them through the another branch device.
You will also see already configured LAN subnets, and you can specify additional subnets if needed.
Step 3: Outbound Forwarding
In this step, select whether the incoming traffic from the tunnel should be forwarded to the LAN side or the WAN side.
Once selected, click SAVE
Now you can see single First Spoke device has been added in Tunnel.
Now will add spoke device in same tunnel.
just like First Spoke device click on +Add Appliance
Step 1: Add Appliance
- Name: Enter the Second Spoke device name.
- Appliance: Select the MAC address of the Second Spoke device.
- Appliance Public IP: No input is required.
- Type: By Default it will be MESH.
- Advanced: Select Packet Cloning.
Now, click Next.
Step 2: Add Subnets
Select the local LAN subnets that you want to share with other devices within the same tunnel.
In this case, I have added a single network. This network will be added to the All Spoke device, allowing users to reach the 192.168.2.1/24 subnet through this device.
Step 3: Outbound Forwarding
Select whether the incoming traffic from the tunnel should be forwarded to the LAN side or the WAN side.
Once selected, click SAVE.
