Minimum supported releases: Cisco IOS XE Catalyst SD-WAN Release 17.10.1a, Cisco vManage Release 20.10.1

Cisco Catalyst SD-WAN includes a technology called Cisco Catalyst SD-WAN Cloud OnRamp for Multicloud, for integrating public cloud infrastructure into the Cisco Catalyst SD-WAN fabric. For a network using Multi-Region Fabric, you can establish site-to-site connectivity in multiple cloud regions and cloud networks by using a cloud backbone or a Software-Defined Cloud Interconnect (SDCI) provider backbone as core region (region 0). In this configuration, one or more cloud regions are configured as separate Multi-Region Fabric regions. Cloud gateways or interconnect gateways are configured as border routers, and full-mesh connectivity between gateways in different Multi-Region Fabric regions is set up to carry site-to-site traffic over the cloud backbone or the SDCI provider backbone.

The following cloud services support a cloud-based core region:

• Microsoft Azure

• Amazon Web Services (AWS)

• Google Cloud Platform (GCP)

The following SDCI provider supports an interconnect gateway-based core region:

• Megaport

Note

In case of AWS, when site-to-site connectivity is enabled at the global setting level, each cloud gateway must be configured as a border router. In case of GCP, when site-to-site connectivity is enabled at the global setting level, only border routers that have site-to-site connectivity participate in core routing. The Megaport fabric supports private site-to-site connectivity. Therefore, it is not always necessary to have a full mesh of site-to-site connectivity when SDCI routers are configured as border routers. Routers that have direct connectivity with each other can create a full-mesh network among the connected sites. However, if the SDCI routers are in partial-mesh connectivity, it is still possible to establish full-mesh connectivity using the BFD tunnels. The routing protocol helps in advertising the connected links between the sites that do not have direct connectivity, and thus a full logical mesh of BFD tunnels over private links between the connected sites is created. For example, Site A is connected to Site B through a Virtual Cross Connect (VXC). Similarly, Site C is connected to Site B through another VXC. However, there is no direct connection between Site A and Site C. In this scenario, Site A can connect to Site C by using the VXC between Site B and Site C. The connectivity between Site A and Site C is discovered through the standard routing protocol in underlay, and thus BFD tunnels are formed between Site A and Site C.

This feature is supported only on Cisco IOS XE Catalyst SD-WAN devices. Minimum supported release for the devices is Cisco IOS XE Catalyst SD-WAN Release 17.10.1a.

• You must have a cloud or SDCI account.

• Cloud gateways or interconnect gateways for regions that need to exchange traffic must be reachable to each other in the underlay routing.

• When using AWS, enable full-mesh connectivity between transit virtual path connections (TVPCs) of cloud gateways in different regions to carry site-to-site traffic.

• After you enable the Multi-Region Fabric option in Cisco SD-WAN Manager, you cannot set it to disabled again.

• If you choose to assign a device to a different Multi-Region Fabric region, then assign all devices belonging to a cloud gateway or an interconnect gateway to the same Multi-Region Fabric region because there is no check to prevent a region mismatch.

• The Equinix SDCI is not supported.

1. Enable Multi-Region Fabric.

2. Create a region in a network hierarchy.

3. Create a site in a network hierarchy.

4. Attach devices to a site.

   In this procedure, when specifying the site ID for a device, you can use any of the existing site IDs that are available in the network hierarchy or enter a new site ID. If you enter a new site ID without creating a node in the network hierarchy, the site is automatically created and listed on the Configuration > Network Hierarchy page.

5. Assign Regions to a Cisco Catalyst SD-WAN Controller Using Cisco SD-WAN Manager.

6. Create a cloud gateway border router.

   Using Cisco Catalyst SD-WAN Cloud OnRamp for Multicloud, create a cloud gateway in a public cloud service, and configure the MRF Role as Border router. For information about creating a cloud gateway in one of the supported public cloud services, such as AWS, Azure, or GCP, see the Cisco Catalyst SD-WAN Cloud OnRamp Configuration Guide, Cisco IOS XE Release 17.x.

7. If your topology includes Megaport, create an interconnect gateway at a Megaport location.

   Configure the MRF Role as Border router. For more information, see Create Interconnect Gateway at a Megaport Location.

Note

After creating a cloud gateway or an interconnect gateway, if you move a site from one region to another, it creates a mismatch between the current region and the configured region. This notification is generated on the Configuration > Cloud onRamp for Multicloud > Gateway Management page. To ensure that the current region and the configured region are the same, click … adjacent to the gateway name and choose Push Configuration.