Citrix SD-WAN

Configure GRE Tunnels for the MCN Site (Optional)

The SD-WAN GRE Tunnels settings enable you to configure SD-WAN Appliances to terminate GRE tunnels on the LAN. If you do not want to configure this site as a GRE Tunnel termination node, you can skip this step, and proceed to the section, Configuring the WAN Links for the MCN Site.

To configure a GRE Tunnel, do the following:

  1. Continuing in the connections tab for the new MCN site, click GRE Tunnels. This opens the GRE Tunnels table for the new site.

    GRE tunnel configuration connection MCN

  2. Click + to the right of the GRE Tunnels. This adds a new blank GRE Tunnel entry to the table and opens it for editing.

    Add GRE tunnel MCN

  3. Configure the GRE Tunnel settings.

    Enter the following:

    • Name – Enter a name for the new GRE tunnel, or accept the default. The default uses the following naming format:

    • Appliance-Tunnel-<number> - Where <number> is the number of GRE Tunnels configured for this site, incremented by one.

    • Firewall Zone - Select the file zone for the GRE tunnel to you.

    • Source IP – Select a source IP Address for the tunnel from the drop-down menu for this field. The menu options are the list of Virtual Interfaces configured for this site. Configure at least one Virtual Interface before you can configure a GRE Tunnel. For instructions, see Configuring the Virtual Interface Groups for the MCN Site and Configuring the Virtual IP Addresses for the MCN Site.

      • Public Source IP: Enter the IP address to be used as the source address for packets in the GRE tunnel. The source IP address is the starting point of the GRE tunnel.

      • Destination IP – Enter the IP address to be used as the host destination. The destination IP address is the ending point of the GRE tunnel.

      • Tunnel IP / Prefix – Enter the IP Address and prefix used for the GRE tunnel interface.

      • Checksum – Select this to enable Checksum for the tunnel GRE header.

      • Keepalive Period – Enter the wait time interval (in seconds) between keepalive messages. If configured to 0, no keepalive packets are sent, but the tunnel remains up. The default is 10.

      • Keepalive Retries – Enter the number of keepalive retries the Virtual WAN Appliance should attempt before it brings down the tunnel. The default is 3.

  4. Click Apply. This submits your settings and adds the new GRE Tunnel to the table.

    GRE tunnel branch setting

  5. To configure more GRE Tunnels, click + to the right of the GRE Tunnels, and proceed as per the preceding steps.

The next step is to configure the WAN links for the MCN site.

Configure GRE Tunnels for the MCN Site (Optional)