Hi, I got a design question.
We have the following setup:
2 MX in warm spare connected to internet providers
2 MS250 in a stack connected to the MX's with a trunk for a transit vlan and vlan 1 for management.
This stack provides L3 connectivity for access vlans.
Several MS250 access switches connected to the MS250 stack with LACP providing the vlan's.
Now we have a new VOIP provider and i am trying to design a good setup.
The provider has 2 separate modem/routers each connected to its own uplink.
Those modems run DHCP with the correct options for our VOIP phones.
The provider has no solution for failover between these 2 links.
I was thinking of some options:
1. configuring a separate access voice vlan at our MS250 stack with a DHCP forwarder pointing to both modems. Problem with this setup is that the modems are unaware of the uplink status to the provider.
With Cisco i could use IP SLA to have the uplink status monitored, but the MS250 does not support that.
Also the MX supports route injection depending on next hop or host icmp response, the MS does not have that option.
2. Place both modems in one vlan, whatever DHCP request gets served first will be used for the phone.
With this option still, when one line fails there is no automatic failover.
3. Using the MX ?
I did not find an uplink check for other interfaces than the WAN interfaces ?
I did find the option to insert a route depending on a next hop ping response or host response. So that would be an option.
However, i am confused on how the VLAN's and interfaces on a MX work. As there are only OUTBOUND or INBOUND rules but not like the ASA rules depeding on an Interface or Zone.
So is it possible to have different access-list setups for separate interfaces on the MX ?
Any other options or setups that i am missing ?
The provider modems do not support routing protocols or FHRP's.
It is a complete separate environment.
They did not offer a redundant setup, but we wanted perse redundant devices/lines.
At this moment they can only deliver 2 modems with lines 🙂 without any failover interaction or routing.
So that having said, one of their solutions in case of issues was to manually switch lines 🙂
The other one was to change all port vlans to the second vlan 🙂
Of course that is nowhere near what we would like, we want an automatic failover with techniques available in the networking business.
Documentation of the provider is what i am still waiting for, like subnets, are we free to choose ip ranges e.t.c.
I know i can do some tricks with Cisco (for example we have some ASR 1001-X), but i am exploring the Meraki options.
An option that is lower cost but not automatically bullet proof in all cases:
You have a pair of MX's in warm spare mode. Do they have a spare WAN port each?
If so, plug the VoIP providers routers into the second WAN port on each of your MXs. Create a flow preference to direct your VoIP VLAN to the second WAN port.
A bullet proof option:
Buy an extra pair of MX's. Plug both of its WAN1 ports into the first VoIP router. Plug both of its WAN2 ports into the second VoIP router.
No we also have a redundant internet provider uplink, so both WAN1 and 2 on both MX's are already in use.
I think i will stick to our ASR 1001-X.
Too bad, i had hoped Meraki would have had more flexible configurations possible.