Service interfaces and UNIs

Service interfaces and UNIs are interfaces for connecting devices to transport and network services. These interfaces can be created on top of any OpenFlow interfaces except those corresponding to the WAN interfaces of the SD-WAN.

In turn, on top of service interfaces, you can create ACL interfaces that filter traffic between transport services based on specified constraints.

You can create all necessary UNIs in one UNI template, and then apply it to a CPE device when creating and registering that device. In this case, all UNIs from the template are automatically created on the CPE device.

The difference between UNI (user network interfaces) and service interfaces is that UNIs are used when creating network services, and service interfaces are used when creating transport services. In addition, service interfaces cannot be added to the graphical designer tool that is used to build the network service topology, or assigned to

Note that when you create a UNI, a corresponding service interface is automatically created for it, but for service interfaces, UNIs are not created.

Creating a service interface

To create a service interface:

1. In the menu, go to the Infrastructure section.

   The SD-WAN infrastructure management page is displayed. By default, the Network resources tab is selected, which displays the table of SD-WAN Controllers.

2. Click Management next to the SD-WAN Controller and in the drop-down list, select Configuration menu.

   This opens the SD-WAN Controller configuration menu. By default, you are taken to the Controller nodes section, which displays a table of Controller nodes.

3. Go to the Service interfaces section.

   A table of service and ACL interfaces is displayed.

4. In the upper part of the page, in the Switch and Port drop-down lists, select a CPE device and an OpenFlow interface.
5. Click Create service interface.
6. This opens a window; in that window, in the Type drop-down list, select the type of encapsulation on the service interface:
   • Access (selected by default).
   • VLAN
   • Q-in-Q.
   • ACL — Used for creating an ACL interface.
7. If in the Type drop-down list, you selected VLAN, in the VLAN ID field, enter the outer VLAN tag. Range of values: 1 to 4,094.
8. If in the Type drop-down list, you selected Q-in-Q, follow these steps:
   1. In the VLAN ID field, enter the outer VLAN tag. Range of values: 1 to 4,094.
   2. In the Inner VLAN ID field, enter the inner VLAN tag. Range of values: 1 to 4,094.
9. If necessary, enter a brief description of the service interface in the Description field.
10. Click Create.

The service interface is created and displayed in the table.

Creating an ACL interface

The ACL interface is created on top of the service interface, it filters traffic transmitted between transport services. Before creating an ACL interface, you must complete the following steps:

• Create a service interface.
• Create a traffic filter.

To create an ACL interface:

1. In the menu, go to the Infrastructure section.

   The SD-WAN infrastructure management page is displayed. By default, the Network resources tab is selected, which displays the table of SD-WAN Controllers.

2. Click Management next to the SD-WAN Controller and in the drop-down list, select Configuration menu.

   This opens the SD-WAN Controller configuration menu. By default, you are taken to the Controller nodes section, which displays a table of Controller nodes.

3. Go to the Service interfaces section.

   A table of service and ACL interfaces is displayed.

4. In the upper part of the page, in the Switch and Port drop-down lists, select a CPE device and an OpenFlow interface.
5. Click + Create service interface.
6. This opens a window; in that window, in the Type drop-down list, select ACL.
7. In the Service interface drop-down list, select the service interface on top of which you want to create the ACL interface.
8. In the Traffic fliter drop-down list, select the previously created traffic filter for the ACL interface. You can use the same traffic filter for multiple ACL interfaces.
9. In the Sequence drop-down list, select the sequential number of the ACL interface. Traffic is directed first to the ACL interface with the lowest number. If the filter used on an ACL interface drops traffic, it is forwarded to the second ACL interface, and so on.

   Range of values: 1 to 4. You cannot create two ACL interfaces with the same match order value on top of one service interface.

10. If necessary, enter a brief description of the ACL interface in the Description field.
11. Click Create.

The ACL interface is created and displayed in the table.

Viewing the usage of a service interface and an ACL interface

You can view which solution components are using a service interface or an ACL interface.

To view the usage of a service interface or ACL interface:

1. In the menu, go to the Infrastructure section.

   The SD-WAN infrastructure management page is displayed. By default, the Network resources tab is selected, which displays the table of SD-WAN Controllers.

2. Click Management next to the SD-WAN Controller and in the drop-down list, select Configuration menu.

   This opens the SD-WAN Controller configuration menu. By default, you are taken to the Controller nodes section, which displays a table of Controller nodes.

3. Go to the Service interfaces section.

   A table of service and ACL interfaces is displayed.

4. Click Management next to the interface and in the drop-down list, select Show usage.

This opens a window displaying a table of all solution components that use the interface.

Deleting a service interface and an ACL interface

You cannot delete a service interface or ACL interface that is being used by a solution component, such as a transport service. Deleted interfaces cannot be restored.

To delete a service interface or an ACL interface:

1. In the menu, go to the Infrastructure section.

   The SD-WAN infrastructure management page is displayed. By default, the Network resources tab is selected, which displays the table of SD-WAN Controllers.

2. Click Management next to the SD-WAN Controller and in the drop-down list, select Configuration menu.

   This opens the SD-WAN Controller configuration menu. By default, you are taken to the Controller nodes section, which displays a table of Controller nodes.

3. Go to the Service interfaces section.

   A table of service and ACL interfaces is displayed.

4. Click Management next to the interface and in the drop-down list, select Delete.
5. In the confirmation window, click Delete.

The interface is deleted and is no longer displayed in the table.

Creating a UNI template

A UNI template can be used for centralized creation of UNIs on CPE devices. After the template is created, the necessary UNIs are created in it. The template is then applied to a device when that device is created or registered. All UNIs created in the template are automatically created on the device.

To create a UNI template:

1. In the menu, go to the SD-WAN section.

   By default, the CPE subsection is displayed with a table of CPE devices.

2. In the upper part of the page, click + UNI template.
3. This opens a window; in that window, enter the name of the template and click Create.

The UNI templates subsection is displayed with a table of UNI templates. The template is created and displayed in the table.

You must create a UNI in the UNI template.

Creating a UNI in a template

After creating the template, you must create the necessary UNIs in it. When you apply a template to a CPE device, all UNIs created in the template are automatically created on that device. Before you can create a UNI in a template, you must create a UNI template.

To create a UNI in a template:

1. In the menu, go to the SD-WAN → UNI templates subsection.

   A table of UNI templates is displayed.

2. Click the UNI template.

   The settings area is displayed in the lower part of the page. You can expand the settings area to fill the entire page by clicking the expand button .

3. Select the UNI tab.

   A table of UNIs is displayed.

4. Click + UNI.
5. This opens a window; in that window, in the Name field, enter the name of the UNI.
6. In the OpenFlow interface field, enter the number of the OpenFlow interface on top of which you want to create a UNI.
7. In the OpenFlow interface drop-down list, select the UNI encapsulation type:
   • Access (selected by default).
   • VLAN
   • Q-in-Q
8. If in the Encapsulation drop-down list, you selected VLAN, in the VLAN ID field, enter the outer VLAN tag. Range of values: 1 to 4094.
9. If in the Encapsulation drop-down list, you selected Q-in-Q, follow these steps:
   1. In the VLAN ID field, enter the outer VLAN tag. Range of values: 1 to 4,094.
   2. In the Inner VLAN ID field, enter the inner VLAN tag. Range of values: 1 to 4,094.
10. Click Create.

    The UNI is created in the template and displayed in the table.

11. In the upper part of the settings area, click Save to save the configuration of the UNI template.

Editing a UNI in a template

To edit a UNI in a template:

1. In the menu, go to the SD-WAN → UNI templates subsection.

   A table of UNI templates is displayed.

2. Click the UNI template.

   The settings area is displayed in the lower part of the page. You can expand the settings area to fill the entire page by clicking the expand button .

3. Select the UNI tab.

   A table of UNIs is displayed.

4. Click Edit next to the UNI.
5. This opens a window; in that window, edit the settings that you want to change. For a description of the settings, see the instructions for creating a UNI in a template.
6. Click Save.
7. In the upper part of the settings area, click Save to save the configuration of the UNI template.

Deleting a UNI in a template

UNIs that are deleted in the template cannot be restored.

To delete a UNI in a template:

1. In the menu, go to the SD-WAN → UNI templates subsection.

   A table of UNI templates is displayed.

2. Click the UNI template.

   The settings area is displayed in the lower part of the page. You can expand the settings area to fill the entire page by clicking the expand button .

3. Select the UNI tab.

   A table of UNIs is displayed.

4. Click Delete next to the UNI.

   The UNI is deleted and is no longer displayed in the table.

5. In the upper part of the settings area, click Save to save the configuration of the UNI template.

Deleting a UNI template

Deleted UNI templates cannot be restored.

To delete a UNI template:

1. In the menu, go to the SD-WAN → UNI templates subsection.

   A table of UNI templates is displayed.

2. Click the UNI template.

   The settings area is displayed in the lower part of the page. You can expand the settings area to fill the entire page by clicking the expand button .

3. In the upper part of the settings area, under Actions click Delete.
4. In the confirmation window, click Delete.

The UNI template is deleted and is no longer displayed in the table.

Creating a UNI

You can create a UNI on an individual CPE device. Before creating an UNI, you must complete the following steps:

• Activate the CPE device.
• Create a QoS rule.

To create a UNI on a CPE device:

1. In the menu, go to the SD-WAN section.

   By default, the CPE subsection is displayed with a table of CPE devices.

2. Click the CPE device.

   The settings area is displayed in the lower part of the page. You can expand the settings area to fill the entire page by clicking the expand button .

3. Select the UNI tab.

   A table of UNIs is displayed.

4. Click + UNI.
5. This opens a window; in that window, in the Name field, enter the name of the UNI.
6. In the Port drop-down list, select the OpenFlow interface on top of which you want to create a UNI.
7. In the Encapsulation drop-down list, select the UNI encapsulation type:
   • Access (selected by default)
   • VLAN
   • Q-in-Q
8. If in the Encapsulation drop-down list, you selected VLAN, in the VLAN ID field, enter the outer VLAN tag. Range of values: 1 to 4094.
9. If in the Encapsulation drop-down list, you selected Q-in-Q, follow these steps:
   1. In the VLAN ID field, enter the outer VLAN tag. Range of values: 1 to 4,094.
   2. In the Inner VLAN ID field, enter the inner VLAN tag. Range of values: 1 to 4,094.
10. In the QoS drop-down list, select the previously created QoS rule for the UNI.
11. Click Create.

    The UNI is created and displayed in the table.

12. In the upper part of the settings area, click Save to save the configuration of the CPE device.

Editing a UNI

You can edit a UNI on an individual CPE device.

To edit a UNI:

1. In the menu, go to the SD-WAN section.

   By default, the CPE subsection is displayed with a table of CPE devices.

2. Click the CPE device.

   The settings area is displayed in the lower part of the page. You can expand the settings area to fill the entire page by clicking the expand button .

3. Select the UNI tab.

   A table of UNIs is displayed.

4. Click Edit next to the UNI.
5. This opens a window; in that window, edit the settings that you want to change. For a description of the settings, see the instructions for creating a UNI.
6. Click Save.
7. In the upper part of the settings area, click Save to save the configuration of the CPE device.

Deleting a UNI

You can delete a UNI on an individual CPE device. Deleted UNIs cannot be restored.

To delete a UNI:

1. In the menu, go to the SD-WAN section.

   By default, the CPE subsection is displayed with a table of CPE devices.

2. Click the CPE device.

   The settings area is displayed in the lower part of the page. You can expand the settings area to fill the entire page by clicking the expand button .

3. Select the UNI tab.

   A table of UNIs is displayed.

4. Click Delete next to the UNI.

   The UNI is deleted and is no longer displayed in the table.

5. In the upper part of the settings area, click Save to save the configuration of the CPE device.