Meraki

Vishal07 · ‎Aug 7 2025

Hi all,

I'm having one pair of Meraki Mx place as perimeter firewall and below one pair of FTD fw directly connected to Mx. Need to know how will be my failover works here as Meraki works as warmspare i.e failover would only happen if there's a connectivity loss with dashboard, while FTD support link, device, path failover.

MX1 single link to FTD1

MX2 single link to FTD2

Just a thought if I do criss cross connectivity between Mx and FTD, would my Active FTD connected to both Mx's forward traffic to Spare Mx also and that traffic would be drop ?

Pls help

Ryan_Miles · ‎Aug 7 2025

A diagram would help better understand exactly how you plan to deploy. But in general MX HA monitors reachability both on the WAN and LAN side in different ways. This doc (and linked docs within) cover the process in detail.

https://documentation.meraki.com/MX/Deployment_Guides/MX_Warm_Spare_-_High_Availability_Pair#Underly...

Vishal07 · ‎Aug 8 2025

Will it be disruption in network if i do criss cross connectivity with FTD and MX ? Link from active FTD to spare MX will process traffic or all traffic will go via active Ftd to active Mx ?

cmr · ‎Aug 8 2025

Add these two links and you'll be fine, otherwise if the FTD connected to the spare MX becomes active you will lose internet access

If my answer solves your problem please click Accept as Solution so others can benefit from it.

GIdenJoe · ‎Aug 12 2025

Both MX devices need L2 connectivity to each other to pass their VRRP keepalives. So the FTD uplinks must either be a bridge group or interfaces connected to intermediate switches to split between both MX units.

Meraki

Community

Failover query

Failover query