SD-Branch Redundancy

Administrators can set up a redundancy scheme in SD-Branches and data centers to provide a highly available and an always-on network. The data center, VPNC, and Branch Gateway failover redundancy features allow network administrators to significantly reduce the downtime and client traffic disruptions.

Data Center Redundancy

The SD-WAN Software-Defined Wide Area Network. SD-WAN is an application for applying SDN technology to WAN connections that connect enterprise networks across disparate geographical locations. solution supports active-standby or active-active VPNC configuration at the data center. Any gateway can be configured to function as a VPNC at the data center or headquarters to aggregate data traffic from branches.

Administrators can configure primary and redundant VPNCs in active-active mode to allow some Branch Gateways to terminate on one VPNC and the remaining on the second VPNC.

For example, if you have data centers on the East and West Coasts, half of the branch sites could connect to the data center on the West Coast as primary and that on the East Coast as backup. The remaining sites could connect to the East Coast data center as primary and that on the West Coast as backup. This architecture reduces downtime during VPNC failures as only half of the sites need to switch to the backup VPNC.

VRRP Redundancy

The Virtual Router Redundancy Protocol (VRRP Virtual Router Redundancy Protocol. VRRP is an election protocol that dynamically assigns responsibility for a virtual router to one of the VRRP routers on a LAN.) is used to create various redundancy solutions, such as pairs of HPE Aruba Networking Gateways acting in active-backup mode or in primary-standby mode by using a virtual IP address. When the primary device becomes unavailable, a backup SD-WAN Wide Area Network. WAN is a telecommunications network or computer network that extends over a large geographical distance. Gateway comes up as the primary device with the virtual IP address. All network elements (APs and other devices) are configured to access individual virtual IP addresses of respective VLANs Virtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN., thereby providing a transparent redundant solution to your network.

VRRP eliminates a single point of failure by providing a mechanism to elect a VRRP conductor device. If VRRP preemption is disabled and all HPE Aruba Networking Gateways share the same priority, the first device that comes up is elected as the VRRP conductor. However, if VRRP preemption is enabled and all devices share the same priority, the device with the highest IP address becomes the VRRP conductor.

Virtual Uplinks

Virtual uplinks allow you to set up link aggregation (port trunking or bonding) between Gateways and other network devices. This aggregation merges many physical connections into a single logical connection, increasing throughput and enhancing network stability by adding redundancy if one of the physical links fails.

To know how to configure redundant gateways for high availability, see Configuring Redundant Gateways for High Availability.