FlexiWAN installation and configuration

This article describes the installation and configuration of a SDWAN network with the software flexiWAN.

The example describes a simple installation, start-up, and networking of four locations in a mesh topology.

flexiManage

The tool flexiManage manages the connnected flexiEdge Router. These include configuration, authorization, and information for or via the routers. Routers can also be activated for the SD-WAN pool via web interface.

Setting up account

For the installation and authorization of a flexiWAN network, you must first set up your own account. Click on the following link for the start-up:

https://manage.flexiwan.com/login

Setup of API tokens

With flexiWAN, routers in the network are identified and connected using tokens. The “Inventory” and “Tokens” tabs take you to the correct menu.

With the New Token button, a new token can be generated. This is needed to integrate the desired edge routers into the network. It must be stored on the routers for this purpose.

FlexiEdge router

The following describes how to set up the endpoints—flexiEdge routers—in a flexiWAN network.

Native installation of the router nodes

The installation of the router is possible via ISO image. This is installed natively on the router.

The latest images can be found here: https://imager.flexiwan.com/main/latest/ .

After a restart, the routers obtain an IP address via DHCP and can be accessed via WebUI:

http://zugewieseneip:8080

The standard user data are as follows:

• login: admin
• password: flexiwan

In the next step, the token is entered from flexiManager into the flexiEdge router and confirmed with Update Token.

Add flexiEdge routers to the SDWAN pool

If the router is new to the flexiWAN pool, it will be displayed as an unapproved device (“not approved”).

The router can then be checked using the API key previously assigned by the flexiManage control instance.

Assign a Device Name and Description and set the switch to Approved.

Configuration of NICs

The local LAN Nics for the SDWAN connection under Configuration / Interfaces are defined via manager:

We create the network connections for SDWAN that are necessary

• WAN for SDWAN Mesh
• LAN / DHCP for our connected clients

For this, the interfaces, that are necessary, must be be specifically approved:

Configuration of WAN Uplink

Change the assignment to Yes:

Creation of LAN segment for clients with DHCP server

As an example, we create a local LAN network that distributes IP addresses individually via DHCP:

• Configure Interface / set NIC on Assigned Yes (here eth0)

  

  *Update the new IP address first, otherwise you won't be able to set up a DHCP server here.
• Now use the button DHCP server -> Add DHCP Setting /IP Range (here in the example 192.168.51.20-50) to enter the settings and then activate them with Update.

  

Roll out configuration on flexiEdge routers

Confirm the setting with the button Update Device and roll out router:

Start flexiEdge router actively

Now, the router must be startet:

For this, perform Inventory --> Devices --> dial router --> Start Device

The router is now synchronized:

Once the router has booted up:

The router is in Running State.

This completes the setup of the first location.

Set up additional locations

The subnets of the LAN segments at the other locations

must not overlap.

Here is an example of the procedure:

location 1: LAN 192.168.51.1/24

location 2: LAN 192.168.52.1/24 usw.

• flexiManage recognizes identical subnets internally in device management and displays them with a warning message.
• Once all 4 locations have been set up, they can be displayed on a map in the dashboard:

Connecting locations with each other /Full Mesh

Now select the devices in Inventory --> Devices and network with each other.

To do this, select the locations to be networked in flexiManage Inventory.

(All must be Approved / Connected / Synced State)

Now, create the tunnels: Inventory --> Devices --> Actions --> Create Tunnels

Select type of networking

There are different networking methods Hub & Spoke and Full Mesh;

we select for this example FullMesh and confirm it with Create Tunnels

After confirming with Create Tunnels the devices are briefly in sync.

*are back in synced state after a short time.

Control of Mesh network

The flexiWAN software has now created all tunnels independently with all tunnel addresses.

This can be verified under Inventory --> Tunnels:

Dashboard / Tunnel active and running:

Additional locations can be added without any problems using the same procedure as above.

Sources

• https://docs.flexiwan.com/

Author: Wilfried Seifert Wilfried Seifert, working in the Systems Engineering department at Thomas-Krenn, is responsible for system/prototype development in his work area. LPIC 3 certified, deals with construction / programming of embedded / GPIO systems; in his spare time he likes to repair old home computers, attends Linux conferences or is on the road with his bike (MTB) for sporting compensation.

Translator: Alina Ranzinger Alina has been working at Thomas-Krenn.AG since 2024. After her training as multilingual business assistant, she got her job as assistant of the Product Management and is responsible for the translation of texts and for the organisation of the department.