Meraki

Community

Fail over over metro e

donavon89
Comes here often
‎Dec 21 2017 2:21 PM
‎Dec 21 2017 2:21 PM

Fail over over metro e

Greetings everyone!

I have a project that im working on. 

 

I have 7 stores (locations) that I manage 100% of the IT stuff for. 1 of the locations has a 100/100 MBPs and all the other sites are connected via a Metro-e or metro ethernet connection. This metro e is managed by Cox cable, they tell me that is a layer 2 switch that connects all my sites together. 

 

I need to bring in a secondary connection (fail over) the only ISP in my area that is not on cox can only get to one of our 6 locations (not the main store). 

The problem i have is....How do i redirect all internet traffic from the main store to the store that has the back up ISP connection in the event that the main ISP and the main store goes down over the metro e? 

0 Kudos
9 Replies 9
KB
Here to help
‎Dec 21 2017 2:30 PM
‎Dec 21 2017 2:30 PM

One way you can do it is to build site to site vpn using MX appliance have default gateway out secondary ISP, but this still would have point of failure.

You can use the hub and spoke design.

 

https://documentation.meraki.com/MX-Z/Site-to-site_VPN/Site-to-site_VPN_Settings

0 Kudos
In response to KB
donavon89
Comes here often
‎Dec 21 2017 2:32 PM
‎Dec 21 2017 2:32 PM

Yeah I looked into doing this but like you said you still have a point for failure. I'm thinking I need a soultion that would rerout traffic over a lan port to another IP address. 

0 Kudos
In response to donavon89
KB
Here to help
‎Dec 21 2017 2:43 PM
‎Dec 21 2017 2:43 PM

That would require metro E to be routed to internet on the back end that is the only way you can include the other connection.

Or a cloud based metro link.

 

0 Kudos
In response to KB
MilesMeraki
Head in the Cloud
‎Dec 21 2017 3:23 PM
‎Dec 21 2017 3:23 PM

Have you explored the option of using cellular/LTE as a backup link?

Eliot F | Simplifying IT with Cloud Solutions
Found this helpful? Give me some Kudos! (click on the little up-arrow below)
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Dec 21 2017 3:35 PM
‎Dec 21 2017 3:35 PM

If I understand correctly, all your stores are in the same layer 2 domain - in the same subnet?

 

If this is the case, you can simply use an active/standby MX configuration.

0 Kudos
In response to PhilipDAth
donavon89
Comes here often
‎Dec 22 2017 6:57 AM
‎Dec 22 2017 6:57 AM

Yes there is a vlan just for the metro E of vlan 99 -10.62.214.0/26

0 Kudos
In response to donavon89
Adam
Kind of a big deal
‎Dec 22 2017 8:03 AM
‎Dec 22 2017 8:03 AM

If I understand you correctly we have a somewhat similar issue.  Our MetroE connections are private but internet capable through the Hub connection.  So we have a cheap public internet connection and our more expensive private MetroE or MPLS connection.  We haev typically been using USB aircards connected to the MX to manually make routing changes.  Although our sites with dual internet connections and Site to Site VPN require no babysitting.  So we are going more that direction in lieu of the private links.  

Adam R MS | CISSP, CISM, VCP, MCITP, CCNP, ITILv3, CMNO
If this was helpful click the Kudo button below
If my reply solved your issue, please mark it as a solution.
0 Kudos
In response to donavon89
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Dec 22 2017 12:26 PM
‎Dec 22 2017 12:26 PM

At each site, what is routing between the local Metro Ethernet connection and the local LAN?

0 Kudos
PresITsupport
Here to help
‎Jan 2 2018 9:20 AM
‎Jan 2 2018 9:20 AM

Have you guys figured this out?

 

We have a very similar scenario at our site.

 

We currently have MPLS connecting 6 locations. Routing is done by our ISP. 

 

We are moving away from MPLS and recently starting to implement Metro-E at our locations.

Each location has a designated cheap uplink. Currently I am using each location's core L3 switch to do failover routing for both MPLS/Metro-E and uplink ( I wanted it to use MX auto-vpn if MPLS/Metro-E goes down and if local uplink goes down, send default route to MPLS/Metro-E). Ultimately I want to move all these routes to MX, so I only need to manage local L3 routing on Core switch.

 

I attempted to setup this configuration, https://documentation.meraki.com/MX-Z/Site-to-site_VPN/Configuring_Site-to-site_VPN_over_MPLS, on our sites, but branch keeps forming autovpn over its own uplink instead of over Metro-E.

 

Did anyone figured this out? 

 

By the way, the HQ has two uplinks and Metro-E connection.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.