Meraki

Community

Advertise AutoVPN routes with iBGP to Non-Meraki peer

ENIGMATIC
Conversationalist
‎Mar 19 2021 10:18 AM
‎Mar 19 2021 10:18 AM

Advertise AutoVPN routes with iBGP to Non-Meraki peer

Hello,

 

We're considering to build a topology like this, I know that Non-Meraki VPN routes are not advertised to AutoVPN peers and I must build non-Meraki VPN to each spoke. 

(We don't want to add an additional MX http://www.willette.works/merging-meraki-vpns/)

 

But if I advertise AutoVPN routes with iBGP between vMX - VPN Concentrator and a pfsense instance on Azure/AWS, will pfsense instance learn all AutoVPN routes from vMX ?

 

And then we would like to route all AutoVPN routes through site to site VPN between pfsense instances. Am I wrong somewhere ?

 

Meraki_topology.png

  

if you have any ideas it would be very appreciated !

 

Thank in advance.

 

Antoine.

0 Kudos
1 Reply 1
bmarms
Getting noticed
‎Mar 20 2021 5:13 AM
‎Mar 20 2021 5:13 AM

You may want to review this document and understand the different mx modes and their bgp functions. 

https://documentation.meraki.com/MX/Networks_and_Routing/BGP


Your cloud vmx would need to be a one armed concentrator to perform the functions you’re looking for. 

You’ll need ebgp (different asns) between pfsense and vmx

 

 

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.