Should We Configure All Firewalls With SD WAN In Case Of Future Dual WAN? - Best Practice

Forum|Forum|7 years ago
July 2, 2018
1 reply
4125 views

Just added a second WAN connection to a firewall that was already in use with only one WAN connection in use. Could not complete the SD WAN setup remotely since we would loose connection the the firewall during the reconfiguration. Instead we had to temporarily modify all policies using WAN1 before putting the WAN1 and WAN2 into a newly created SD WAN interface. Question, would it be a best practice to set up an SD WAN on a firewall in which no dual WAN connection was planned to be used? If this were done, it would be much easier to later add a WAN2 connection. Would there be any disadvantage until a WAN2 connection was put into use?

5.6

SecurityPlusAuthor

Explorer III

Any feedback concerning this question? Wondering what the downside of setting up SD WAN but not using it (only using one WAN connection).

emnoc

New Member

Will yes you have many choice but you can build a virtual-an with one interface just for this and as BW grows you add a 2nd link. No disadvantage exist and in fact it would be very smart to take this suggested approach since you do not have to remodifiy any rules if you plan on adding a 2nd link at a TBD.

Ken

SecurityPlusAuthor

Explorer III

Thanks!

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded