Auto Tunnel or Manual Tunnel between VMX (AWS) & vMX (Azure)

VIGUPTA3
Here to help

Auto Tunnel or Manual Tunnel between VMX (AWS) & vMX (Azure)

Hi Team,

 

I have a design question.

 

There are two Hub pairs of Meraki vMX.

1st Pair - AWS

2nd Pair - Azure

 

1. Can we form auto tunnel between Hubs of different HyperScaler or Manual Tunnel would be needed as if this would have been same cloud then we could have used vWAN or Cloud WAN depending on cloud ?

 

2. can we achieve full mesh between all branches and AWS&Azure vMX using autotunnel?

 

Let me know if more details are needed.

 

Thanks

3 Replies 3
MartinLL
Building a reputation

1. If the hubs are in the same organization and you use Auto-VPN the hubs will automatically build AutoVPN tunnels between them self. This is the default hub behavior.

 

If you want the connectivity between cloud providers to be handled in Azure and AWS i would do VPN tunnels with the VPN gateways. This would be more complicated then the above option, but might save on cost or capacity depending on your vMX size and billing.

 

2. Yes, but i would use hub and spoke. Full mesh means that all hubs and spokes form direct tunnels with each other. This is hard to scale unless you have a low amount of MX appliances in your org.

I would do hub and spoke. Add both the AWS and Azure vMX appliances as hubs in your topology. Your spoke site will then create auto vpn tunnels to both.

MLL
VIGUPTA3
Here to help

Thanks @MartinLL

 

How should i provide connectivity between AWs and Azure vMX appliance:

 

- Site 2 Site Tunnel (Manual)?

- vWAN and Cloud WAN combination?

- Or any other preferred method?

 

Thanks

MartinLL
Building a reputation

That is an architectural decision you need to make. None of the answers are wrong. Find what suits your setup best. 

MLL
Get notified when there are additional replies to this discussion.