SD-WAN Administrator’s Guide
    : Create a Default Route to the SD-WAN Interface
    Focus
    Download PDF
    Focus
    1. Home
    2. SD-WAN
    3. SD-WAN Administrator’s Guide
    4. Configure SD-WAN
    5. Create a Default Route to the SD-WAN Interface
    Download PDF

    SD-WAN Administrator’s Guide

    Create a Default Route to the SD-WAN Interface

    Table of Contents

    Create a Default Route to the SD-WAN Interface

    Create a default route to an SD-WAN interface you created in order to bring up the firewall.
    If you are using a service route to access Panorama, to bring up the firewall you must create a default route that points to an SD-WAN interface you created.
    Auto VPN creates a virtual SD-WAN interface named sdwan.901 for DIA and creates a virtual SD-WAN interface named sdwan.902 for VPN tunnels. Auto VPN also creates its own default route that uses the sdwan.901 interface as its egress interface and uses a low metric, so that the sdwan.901 interface is preferred over the default route you created.
    1. Log in to the Panorama Web Interface.
    2. Select the Template you are working on.
    3. Select NetworkVirtual Routers and select a virtual router, such as sd-wan.
    4. Select Static Routes and Add a static route by Name.
    5. For Destination, enter 0.0.0.0/0.
    6. For egress Interface, select one of the logical SD-WAN interfaces you created to bring up the firewall.
      The egress interface you select can be any logical SD-WAN interface except sdwan.901 or sdwan.902.
    7. For Next Hop, select None.
    8. For Metric, enter a value greater than 50, so that this default route is not preferred over the default route that Auto VPN creates with a low metric.
    9. Click OK.
    10. Select Commit and Commit and Push your configuration changes.
    11. Commit your changes.
    12. Repeat this task for other templates on firewalls that use a service route to access Panorama™.

    © 2024 Palo Alto Networks, Inc. All rights reserved.