Hello,
We are testing out Velo Cloud's SD-WAN solution with a vendor of ours, and have a question about the logical placement of the Edge device. The setup is as the picture shows. We'd like to bring this device (or more specifically, a future Velo system unrelated to this particular vendor) to the inside of our firewall.
The big question here is this: Why will it only work when placed in the WAN? What's odd to me is that when it's placed in a different Zone, pings to the vendor network stop, and nothing is reported in the Packet Monitor. What's more, traceroutes from PCs on our LAN only go as far as the X0.
We have a route set up to send traffic bound for the vendor's network to point to the Velo cloud as the Gateway. Again... this seems to work just fine until we change the X14 from WAN to anything else.