Create a Default Route to the SD-WAN Interface

Create a default route to an SD-WAN interface you created in order to bring up the firewall.
If you are using a service route to access Panorama, to bring up the firewall you must create a default route that points to an SD-WAN interface you created.
Auto VPN creates a virtual SD-WAN interface named sdwan.901 for DIA and creates a virtual SD-WAN interface named sdwan.902 for VPN tunnels. Auto VPN also creates its own default route that uses the sdwan.901 interface as its egress interface and uses a low metric, so that the sdwan.901 interface is preferred over the default route you created.
  1. Select the
    Template
    you are working on.
  2. Select
    Network
    Virtual Routers
    and select a virtual router, such as
    sd-wan
    .
  3. Select
    Static Routes
    and
    Add
    a static route by
    Name
    .
  4. For
    Destination
    , enter 0.0.0.0/0.
  5. For egress
    Interface
    , select one of the logical SD-WAN interfaces you created to bring up the firewall, such as sdwan.1.
    The egress interface you select can be any logical SD-WAN interface except sdwan.901 or sdwan.902.
  6. For
    Next Hop
    , select
    None
    .
  7. For
    Metric
    , enter a value greater than 50, so that this default route is not preferred over the default route that Auto VPN creates with a low metric.
  8. Click
    OK
    .
  9. Select
    Commit
    and
    Commit and Push
    your configuration changes.
  10. Commit
    your changes.
  11. Repeat this task for other templates on firewalls that use a service route to access Panorama™.

Recommended For You