Meraki

Community

Firewall MX CONNECTION BGP AWS

hvalles
New here
yesterday
yesterday

Firewall MX CONNECTION BGP AWS

Good day, community,

 

I have two MX firewalls in HA that I want to connect to AWS, where our SAP server is hosted.

The requirement is to establish the connection using BGP. I have found that, starting from MX version 18, it is possible to use eBGP without switching to VPN concentrator mode, allowing the MX firewalls to remain in NAT mode.

Additionally, I discovered that for AWS to support BGP, it requires the AWS Transit Gateway service.

This service allows setting up an IPsec VPN with the MX firewalls, and within the IPsec tunnel, BGP can be used.

I would like to know if anyone has had a similar experience with this type of integration or connection.

 

Thanks in advance!

 

Labels:
0 Kudos
1 Reply 1
GreenMan
Meraki Employee All-Star Meraki Employee All-Star
Meraki Employee All-Star
8 hours ago
8 hours ago

I suspect this is pretty new - I have a feeling AWS previously supported only GRE tunnels - which MX does not support.   I'd be equally interested to hear abut real-world deployments using this.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.