Citrix SD-WAN Platforms
• For defining Security groups the policy must look like the following:
– Outbound: Allow All traic
– Inbound:
– SSH from all IP addresses / subnets from where management IP will be accessed.
– All traic from your AWS VPCs (private IPs)
– All traic from the WAN side public IPs of Citrix SD-WAN peer appliances hosted on prem
or in cloud.
From 11.3 release onwards, Citrix SD-WAN has introduced support for the M5 and C5 in-
stances. The newer AWS regions such as Hong Kong and Paris only support M5 and C5
instances.
The M5 and C5 instances have improved hardware performance and are designed for higher demand-
ing workloads. The M5 and C5 instances deliver better price/performance than the M4 instances on a
per-core basis.
NOTE
• The M5 and C5 instances are supported from a fresh provision of 11.3 and higher version
only. To keep using the M5 and C5 instances, you cannot downgrade from 11.3 version since
the M5 and C5 instances are not supported on any firmware version prior to 11.3 release.
• Instances provisioned with 10.2.4/11.2.1 versions, AMIs cannot change their instance type to
M5/C5.
Deploy SD-WAN standard edition VPX in high availability mode using cloud template
SD-WAN high availability solution template is published in the AWS marketplace, you can subscribe
and use the CloudFormation template to deploy the HA setup.
Prerequisites
Before launching the CloudFormation template, you need to have VPC, subnets, route tables created
for Management, LAN, and WAN network. To create and define the subnets and route tables (if not
created), refer Installing SD-WAN VPX Standard Edition AMI on AWS topic.
To deploy SD-WAN standard edition VPX in high availability mode using cloud template:
1. Go to AWS marketplace and click Pricing tab. Select the Region from the drop-down list and
specify the Fulfillment Option as High Availability Mode deployment. Click Continue to Sub-
scribe.
© 1999-2021 Citrix Systems, Inc. All rights reserved. 311
To Next Page
Loading...
Need help?
General