have 2 active VPNs sending and receiving traffic on a MX100

SOLVED
Carlos23
Conversationalist

have 2 active VPNs sending and receiving traffic on a MX100

good morning I would like to know if I can have 2 VPNs active at the same time passing traffic on an

 

How would the configuration be to perform this step?

1 ACCEPTED SOLUTION
PhilipDAth
Kind of a big deal
Kind of a big deal

If you mean two VPNs between the same two VPN peers - no.  If you mean a VPN to one peer and another VPN to a different peer, yes.

 

If the VPNs are between MXs in the same org, follow this guide:

https://documentation.meraki.com/MX/Site-to-site_VPN/Meraki_Auto_VPN_-_Configuration_and_Troubleshoo... 

 

If the two remote VPN peers are not Meraki, use this guide:

https://documentation.meraki.com/MX/Site-to-site_VPN/Site-to-Site_VPN_Settings#Non-Meraki_VPN_peers 

Note that in this case you can't route traffic from one VPN peer to another VPN peer.

View solution in original post

8 REPLIES 8
DarrenOC
Kind of a big deal
Kind of a big deal

Hi @Carlos23 , what’s your setup here?  Are you using a Meraki MX at both ends of the VPN or are these non Meraki vpn peers?

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
Inderdeep
Kind of a big deal
Kind of a big deal

@Carlos23 : Check this thread 

https://community.meraki.com/t5/Security-SD-WAN/meraki-active-active-branch-setup/m-p/37988 

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com
PhilipDAth
Kind of a big deal
Kind of a big deal

If you mean two VPNs between the same two VPN peers - no.  If you mean a VPN to one peer and another VPN to a different peer, yes.

 

If the VPNs are between MXs in the same org, follow this guide:

https://documentation.meraki.com/MX/Site-to-site_VPN/Meraki_Auto_VPN_-_Configuration_and_Troubleshoo... 

 

If the two remote VPN peers are not Meraki, use this guide:

https://documentation.meraki.com/MX/Site-to-site_VPN/Site-to-Site_VPN_Settings#Non-Meraki_VPN_peers 

Note that in this case you can't route traffic from one VPN peer to another VPN peer.

I mean to use a VPN going out through WAN 1 and another VPN going out through WAN 2 at the same time but both go to the same destination only through different ISPs

MarcP
Kind of a big deal

Sounds like one device and two VPN tunnels (?). Yes, it is possible.

Carlos23
Conversationalist

Me refiero a usar una VPN que sale a través de WAN 1 y otra VPN que sale a través de WAN 2 al mismo tiempo, pero ambas van al mismo destino solo a través de diferentes ISP. esto es lo que quiero hacer

Carlos23
Conversationalist

I mean to use a VPN going out through WAN 1 and another VPN going out through WAN 2 at the same time but both go to the same destination only through different ISPs

PhilipDAth
Kind of a big deal
Kind of a big deal

No.  They have to be built to the primary interface.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.