Hi Team,
Facing issue through Cisco Meraki MX security appliance, application is inaccessible despite Spoke-Hub establishment is absolutely fine.
Architecture of Site
1. Spoke-Hub, where Spoke accessing application from Hub.
2. MX appliance having 2 MPLS Link for Load balancing and Failover.
3. Through MPLS Link-I application is accessible and its working perfectly.
4. Through MPLS Link-II VPN establishment perfect, Link performance fine despite application is inaccessible.
2. Post disconnecting MPLS Link-I getting DNS Error and MX getting Offline instead Link is up and working fine.
Meraki Support approach since August 22 2019.
Helpdesk Support,
Except irrelevant mailer on arbitrary requirement, till date nil outcome resolution from your, which clearly reflects capabilities and support expertise.
Its third week despite you are simply replicating insignificant mailer, what impression it creating with customer?
Point should be noted as mentioned:
Let me ensure you, posting all communication on Meraki platform and technical platform for your support approach and methodologies. Throughout follow-up from past more than three weeks its clear that you are hanging issue on casual approach for simply service request closure else nothing and not concerned about customer business impact.
Through such support and methodologies from helpdesk support, Meraki is loosing its significance and customer faith which degraded the entire service and reliability. One of worst and horrible support.
Sincerely,
Niraj Kumar Sinha
Regards,
Niraj
maybe you can add some design drawings from your underlay and vpn overlay and explain where you application is hosted and how you route it into your vpn?
this issue is new or has been there always?
your mpls 1 and 2 run to the same dc/application? problem is with one specific application or more apllications? your hubs are in concentrator mode?
@Niraj do you see a public IP address for both WAN 1 and WAN 2 interfaces in the GUI, or is either an internal address? Is it one hub and one spoke or do you have multiple of either?
I @Niraj.
Considering only the case when it is not working;
If both of the above work, how does the application actually fail? Does it by chance start and then seem to hang and then fail? If so you might be having an MTU issue.
Otherwise does the application report some kind of error message?
Philip,
1. Yes, clients pinging application via IP address and name server.
Through Link-II Global and Google DNS is reachable but while connecting MX appliance its shown Error " DNS Error"
While connecting both Link I & II application is accessible, especially when Link-I get impacted or there is issue in accessing application.
Link-II performance and reachable is absolutely fine through router and Switch especially issue through MX appliance.