Meraki

Community

Cisco Mx 100 warm spare setup how many public ip required

Solved
Rahul
New here
‎Mar 28 2019 6:53 AM
‎Mar 28 2019 6:53 AM

Cisco Mx 100 warm spare setup how many public ip required

We have two isp

We need HA setup mx 100 with warm spare 

Can you tell me how many public ip required for this setup.

Also we share diagram for the same. 

0 Kudos
1 Accepted Solution
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Mar 28 2019 12:48 PM
‎Mar 28 2019 12:48 PM

3 is the safe answer with the greatest HA options.  2 is also possible but recovering from a failure may take longer.

View solution in original post

8 Replies 8
JasonCampbell
Getting noticed
‎Mar 28 2019 6:58 AM
‎Mar 28 2019 6:58 AM

You need 3 public IPs - 1 for each firewall, and 1 for Virtual IP to share between the stack should one firewall go down. Technically you only need 2 public IPs, but the third minimizes failover and downtime. A /29 from each ISP would give you what you need.
In response to JasonCampbell
Rahul
New here
‎Mar 28 2019 9:15 AM
‎Mar 28 2019 9:15 AM

Yes we have /29 pool from both isp,

But I have doubt  how we can assign

There will be active and standby device.

So where we can assign these 2 public IPs

 

0 Kudos
In response to Rahul
jdsilva
Kind of a big deal
‎Mar 28 2019 9:19 AM
‎Mar 28 2019 9:19 AM

https://documentation.meraki.com/MX/Deployment_Guides/MX_Warm_Spare_-_High_Availability_Pair

 

 

http://blog.brokennetwork.ca | @jdsilva
0 Kudos
In response to jdsilva
Rahul
New here
‎Mar 28 2019 9:27 AM
‎Mar 28 2019 9:27 AM

recommended_HA_design_switch_stack.png

Still m confused, how we can use three public Ip, for heartbeat we can use private ip. 

There will be active and standby unit, so where we can assign public ip. 

On Standby unit or active unit?

For above diagram where we can assign those 2 public ip MXA or MXB ? 

 

0 Kudos
kYutobi
Kind of a big deal
‎Mar 28 2019 7:02 AM
‎Mar 28 2019 7:02 AM

If you have 2 ISP's I would think you only need 3 but you can ask how many IP's do your ISP provide. With the warm spare you can use the MX IP uplink and use virtual IPs.

Enthusiast
0 Kudos
In response to kYutobi
jdsilva
Kind of a big deal
‎Mar 28 2019 8:08 AM
‎Mar 28 2019 8:08 AM

You can do it with two (no NAT HA) or with three (With NAT HA), for each ISP.


The choice of which you use is up to you and your requirements.

http://blog.brokennetwork.ca | @jdsilva
0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Mar 28 2019 12:48 PM
‎Mar 28 2019 12:48 PM

3 is the safe answer with the greatest HA options.  2 is also possible but recovering from a failure may take longer.

In response to PhilipDAth
Rahul
New here
‎Mar 28 2019 12:53 PM
‎Mar 28 2019 12:53 PM

yes thank you very much

means 

3 from each ISP connection, (2 VIPs and 4 IPs for MX 1 and MX 2 WAN links)

 

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.