SD-WAN diagram for LTE (5G and 4G)

Modified on Tue, 9 Jun, 2020 at 9:02 PM

Once your SD-WAN hardware box is configured please do not attempt to edit any settings locally, as everything is subsequently managed via the cloud. 


The attached PDF diagram contains the following:


LTE routers of most brands/models can be used that provides internet via the Ethernet port.

SD-WAN box is pre-configured to register itself in the cloud - everything is managed in the cloud, not the local device.

LAN switch is optional, but useful if you intend to use more than one device on the LAN side of your project


Before connecting the SD-WAN, verify that your LTE router has an active internet connection!


Default IP config on LAN for SD-WAN box is: (let us know if you need this changed to match your exiting LAN IP

range; we can change it remotely in the cloud at any time)

LAN IP: 192.168.3.17

Subnet mask: 255.255.255.0

Gateway: 192.168.3.250 <<< Please note: .250 not .17 (this is a virtual gateway)

DHCP: .20 through .98

DNS: 208.67.222.222 & 9.9.9.9


Port forwarding and DMZ: administered via cloud (request your specific details from us for admin access)


LAN device(s)

SD-WAN box will assign devices on the LAN a DHCP local IP. *** DHCP server feature can be disabled if you prefer *** We recommend using a static IP for LAN devices that need reliable remote access. You can use the following settings:

LAN static IPs = 192.168.3.2 through .16 and .99 through .249

Subnet mask: 255.255.255.0; Gateway: 192.168.3.250; DNS: 208.67.222.222 & 9.9.9.9



Initial configuration of your SD-WAN box

Make a note of the following info that you will require:

  • SD-WAN Service configuration USERNAME
  • SD-WAN Service configuration PASSWORD
  • SD-WAN Service configuration COMMUNITY ID
  • SD-WAN Service configuration AGGREGATION SERVER
  • Your chosen ADMIN PASSWORD
    • If you forget this, you can factory reset by inserting a paperclip into the rear reset hole for 10 seconds
  • Do you want the SD-WAN box DHCP ENABLED?  


Step 1: log in to the SD-WAN

  • Connect a computer to the LAN port (direct, or via switch)
  • Browse to http://192.168.3.17
  • Log in with the default username admin and password Bonding123
  • Click on Settings

Step 2: change settings

  • Select Change password: choose a strong ADMIN PASSWORD
    • Alpha-numerics; >8 chars, 1 x upper, 1 x lower, 1 x numeric
  • Select WAN Web Access Control: set to Open [click Save and reboot]

  • Select LAN settings: check and amend [Save and reboot if changed]
    (You may want to change the LAN to match an existing setup, or turn off DHCP; please be aware that the SD-WAN box requires a PHYSICAL IP on the LAN and a separate VIRTUAL IP - the VRRP Gateway - all traffic on your LAN needs to go via the VRRP Gateway in order to be managed in the cloud and gain a public static IP)
    Why is the default IP range 192.168.3.xx? Because the LTE router(s) on the WAN usually use 192.168.0.1 and 192.168.1.1 - we don't want to stop NAT working between WAN and LAN so we need to avoid common LTE router IP ranges.

  • Select WAN connection setup (Ethernet 2): set Interface Enabled to Yes [click Save and reboot]
    (You will be able to now use a 2nd LTE router on WAN 2 for fail-over; or leave spare)

  • Select Service configuration: enter your service settings [click Save and reboot]
    • SD-WAN Service configuration USERNAME
    • SD-WAN Service configuration PASSWORD
    • SD-WAN Service configuration COMMUNITY ID
    • SD-WAN Service configuration AGGREGATION SERVER

Step 3: test internet access from the LAN

  • Run a speed test at http://zx3.speedtestcustom.comand verify static public IP address
    • Ensure that the IP address (displayed at the bottom-left corner) is your new public IP address associated with your new SD-WAN

Step 4: log into your cloud portal and verify SD-WAN status

  • We will have sent you your unique login details to access your cloud management system for SD-WAN
  • Click the icon on the far right "Access NOC" to remotely manage this SD-WAN box

  • Navigate to Status > Usage Statistics to traffic is now monitored

  • Navigate to Configuration > IP Management and add any port forwarding rules you require
    You may want to use different public port numbers that are forwarded to the same port on different IP devices on the LAN. Consider this example where there are 3devices on the LAN which have Web GUI on port 80:
    • Port forward public ip 11.22.33.44:8001 > LAN IP 192.168.3.101:80
    • Port forward public ip 11.22.33.44:8002 > LAN IP 192.168.3.102:80
    • Port forward public ip 11.22.33.44:8003 > LAN IP 192.168.3.103:80


Next steps...

We are sure that you will find the SD-WAN solution has many and varied applications, providing a static public IP address and full virtual router capabilities hosted in the cloud. Feel free to reach out to us if you need support, or perhaps if you have suggestions too.

[End of article] 



Addendum: notes if using older "ALIX1" boxes...

[WAN2] [WAN1] [LAN] The NIC ports are opposite to the newer APU3 (shown above) - LAN port is far-right, WAN 1 in middle, WAN 2 on far left.

Factory reset IP & password different. If you reset to factory defaults then the LAN IP reverts to 192.168.3.100 (not .17) and the admin password reverts to admin (not Bonding123)



Was this article helpful?

That’s Great!

Thank you for your feedback

Sorry! We couldn't be helpful

Thank you for your feedback

Let us know how can we improve this article!

Select at least one of the reasons
CAPTCHA verification is required.

Feedback sent

We appreciate your effort and will try to fix the article