Views:
In the following example, three Cloud Edge gateways are used to create a star site-to-site VPN configuration.

Configuration Summary

Device names: CE1 (hub), CE2 (spoke), and CE3 (spoke)
  • In hub device CE1, set up two connections to the spoke devices: CE1 to CE2, CE1 to CE3
  • In spoke device CE2, set up a connection to hub device CE1: CE2 to CE1.
  • In spoke device CE3, set up a connection to hub device CE1: CE3 to CE1.
  

Configuration on CE1 (hub)

star-vpn-hub-summary.png
CE1 connection to CE2:
  • Local ID: CE1
  • Remote ID: CE2
    Note
    Note
    CE2 is the Local ID in the CE2 gateway's configuration.
  • Local network: Address object contains IPv4 ranges for both CE1 and CE3's local networks
  • Remote network: Address object contains IPv4 range for CE2's local network
CE1 connection to CE3:
  • Local ID: CE1
  • Remote ID: CE3
    Note
    Note
    CE3 is the Local ID in the CE3 gateway's configuration.
  • Local network: Address object contains IPv4 ranges for both CE1 and CE2's local networks
  • Remote network: Address object contains IPv4 range for CE3's local network
star-vpn-hub-add1-c.png star-vpn-hub-add2-c.png
 

Configuration on CE2 (spoke)

star-vpn-spoke1-summ.png
CE2 connection to CE1:
  • Local ID: CE2
    Note
    Note
    CE2 is the Remote ID in the CE1 gateway's configuration.
  • Local network: Address object contains IPv4 range for CE2's local network
  • Remote network: Address object contains IPv4 ranges for both CE1 and CE3's local networks
star-vpn-spoke1-add-.png
 

Configuration on CE3 (spoke)

star-vpn-spoke2-summ.png
CE3 connection to CE1:
  • Local ID: CE3
    Note
    Note
    CE3 is the Remote ID in the CE1 gateway's configuration.
  • Local network: Address object contains IPv4 range for CE3's local network
  • Remote network: Address object contains IPv4 ranges for both CE1 and CE2's local networks
star-vpn-spoke2-add-.png
Keywords: site-to-site VPN, example,site-to-site, star example,example, star,star