You can use site-to-site virtual private networks (VPNs) to establish communication between sites through a hub. To learn more about hubs, see Adding a Hub.

To configure a site-to-site VPN:

1. Go to Deployment > Sites.

2. In the Site Name column, click the name of the site that you want to connect to another site in a different hub.

   See image.

   

   Close

3. On the site details page, click the Settings tab, then click Site-to-Site VPN in the left-side navigation.

   In the Site-to-Site VPN panel:

   • Connect To Hub: Enable to begin configuring the site-to-site VPN connection.
   • Primary Hub: Select the primary gateway of the hub to which you want to connect from the drop-down menu.
   • Secondary Hub: Select the secondary gateway of the hub to which you want to connect from the drop-down menu.
   • [Gateway Name]: Select WAN interface to use: For the current site gateway:
     • For Primary Hub: Select the WAN interface to use for the primary hub.
     • For Secondary Hub: Select the WAN interface to use for the secondary hub.

   See image.

   

   Close

4. Click Save Changes.

5. Click the VLANs tab and enable Share Over VPN for each VLAN that you want to share. Repeat this process on the site you are connecting to.

   See image.

   

   Close

6. Ensure that you have set up policy-based routing for the sites. To learn more, see Configuring Policy-Based Routing.
7. Test the connectivity between the two sites to verify that the configuration is working.