SD-WAN

 View Only

  • 1.  SD-BRANCH Routing issues OSPF|RIP firewall rule?

    Posted Oct 24, 2025 10:56 AM
    Edited by mvanoverbeek Oct 24, 2025 11:29 AM

    I tried to configure OSPF and RIP on the SD-Branch gateway and noticed I can get neither to work. In the past I configured this device as VPNC and never had issues.

    I issued a packet capture and saw that both RIP and OSPF packets are received from the gateway and I am sending them from the switch, it is as if some firewall rule is blocking it

    I also noticed that I couldn't find a way to set interfaces in passive mode on the gateway which I thought was a bit limiting.

    Hope someone can guide me to a solution, I couldnt find anything in the Validated Solution Guide about it

    Additionally, I am unable to SSH to the device as well, for an unknown reason, it only works through Central not directly from the network

    Thank you



    ------------------------------
    Martijn van Overbeek
    Architect, Netcraftsmen a BlueAlly Company
    ------------------------------



  • 2.  RE: SD-BRANCH Routing issues OSPF|RIP firewall rule?

    Posted Oct 24, 2025 09:05 PM

    AFAIK there is no passive interface setting. But the rest of the OSPF configuration should be same as one would do on VPNC.



    ------------------------------
    If my post was useful accept solution and/or give kudos.
    Any opinions expressed here are solely my own and not necessarily that of HPE or Aruba.
    ------------------------------



  • 3.  RE: SD-BRANCH Routing issues OSPF|RIP firewall rule?

    Posted Oct 27, 2025 02:17 PM
    Edited by mvanoverbeek Nov 14, 2025 01:10 PM

    Thanks Ariya

     

    Eventually I did get it working by updating the role attached to the VLAN, with VPNCs I can remember there is no role but with Branch gateways they automatically inherit the login role.

     


    Original Message


Related Content