Configure the ION Device at a Branch Site

1. Select WorkflowsDevicesClaimed and select the device you wish to configure.
2. From the ellipsis menu, select Configure the device.

   The device configuration screen displays.
3. On the Basic Info screen, enter a name and an (optional) description for the device.

   The ION device model, redundancy mode, serial number, and software version display automatically.

   • Enable L3 Direct Private WAN Forwarding (toggle enabled by default): Enables Layer 3 forwarding over the private WAN underlay. This allows traffic to be routed directly across private WAN links without additional encapsulation.
   • Enable L3 LAN Forwarding (toggle enabled by default): Allows traffic to be forwarded to and from LAN interfaces. This option is only applicable when L3 Direct Private WAN Forwarding is enabled.
   • Application Reachability Probe (toggle enabled by default): Sends probes to verify application reachability over a specific path only when an application and destination is deemed unreachable. You can configure which interface is responsible for generating these probes.
   • Click Create an HA group, to create an ION device cluster.
4. Navigate to Device Toolkit to enable device session access.

   • For Enable Device Session Access, toggle Yes.
   • For Enable Outbound SSH, toggle Yes, if you want to use the device CLI commands to SSH from an ION device to another device within your enterprise network. The default value is No.
   • Change values for Inactive Interval, Retry Login Count, and Account Disabled Interval, if needed.
   • You can access the device CLI from the web interface.

5. Navigate to Interfaces to configure the controller ports, internet ports, and the WAN/LAN ports.