Meraki

Community

MX HA PAIR || Routed Mode || Does it support Per VLAN HA in LAN

Solved
vijaykumar
Conversationalist
‎Jun 28 2024 7:27 AM
‎Jun 28 2024 7:27 AM

MX HA PAIR || Routed Mode || Does it support Per VLAN HA in LAN

Hello All,
I want to understand MX HA Pair in routed mode where we have 5 VLAN configured on MX device.

These 5 VLAN are configured & passed in L2 switch connected in LAN port of Both MX.

As per the Meraki Documents, It sends VRRP message for each VLAN in LAN segment and when Spare device does not receive these messages within certain time, It will take over active Role.

 

My doubt is, If I remove certain VLAN from intermediate L2 switch, in that scenario, Spare MX will not receive VRRP message. Will Spare MX work as Active device in HA for removed VLAN?

    

0 Kudos
1 Accepted Solution
In response to vijaykumar
KarstenI
Kind of a big deal
Kind of a big deal
‎Jun 28 2024 8:59 AM
‎Jun 28 2024 8:59 AM

The goal of MX HA is to deal with hardware failures. As long as the spare receives any heartbeats, no failover happens.

These heartbeats are L2 packets; the spare doesn't have an IP address. LAN devices always communicate with the device that holds the MX's LAN IP.

 

Here is some more information:

https://documentation.meraki.com/MX/Networks_and_Routing/Routed_HA_Failover_Behavior

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

View solution in original post

7 Replies 7
alemabrahao
Kind of a big deal
Kind of a big deal
‎Jun 28 2024 7:47 AM
‎Jun 28 2024 7:47 AM

No, removing a VLAN will not influence VRRP.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
KarstenI
Kind of a big deal
Kind of a big deal
‎Jun 28 2024 7:48 AM
‎Jun 28 2024 7:48 AM

No, in case of a failure, the whole box will change the active state. There is no active-active operation on the MX.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
In response to KarstenI
vijaykumar
Conversationalist
‎Jun 28 2024 8:30 AM
‎Jun 28 2024 8:30 AM

Thanks for your response.
Just to understand in more detail,
If I remove 4 VLAN out of 5 from L2 switch trunk port, leave only one VLAN passing through trunk, in this case also Primary MX will remain Active?

I am just trying to compare it with HSRP working.


In case of MX HA Pair,
How LAN devices [Host machine] will decide to send Data to Which MX? I mean who they will get ARP?

0 Kudos
In response to vijaykumar
KarstenI
Kind of a big deal
Kind of a big deal
‎Jun 28 2024 8:59 AM
‎Jun 28 2024 8:59 AM

The goal of MX HA is to deal with hardware failures. As long as the spare receives any heartbeats, no failover happens.

These heartbeats are L2 packets; the spare doesn't have an IP address. LAN devices always communicate with the device that holds the MX's LAN IP.

 

Here is some more information:

https://documentation.meraki.com/MX/Networks_and_Routing/Routed_HA_Failover_Behavior

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
In response to KarstenI
pdeleuw
Getting noticed
3 weeks ago
3 weeks ago

It's quite a long time ago, but one thing: The heartbeats are VRRP heartbeats, these are L3 packets. Source address is the address from the active MX. Destination is the multicast address 224.0.0.18. The spare MX does not have any LAN IP addresses, but it can receive the multicasts. So the only MX sending the heartbeats is the active one, the spare MX cannot send any IP packet.

In response to pdeleuw
KarstenI
Kind of a big deal
Kind of a big deal
3 weeks ago
3 weeks ago

Oh damn, of course, you are right. It is even clearly described in the link I added, but I messed that up. Thanks for the correction.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Kudos
In response to vijaykumar
IvanJukic
Meraki Employee
Meraki Employee
‎Jun 30 2024 11:40 PM
‎Jun 30 2024 11:40 PM

Hi @vijaykumar ,

If you design your network right, you can have a single transit VLAN between the MXs via your switches. Then have the Switches act as Layer 3 routing devices between the downstream hosts and the MXs.

 

However, you really need to be careful how you can design this.

https://documentation.meraki.com/MX/Deployment_Guides/MX_Warm_Spare_-_High_Availability_Pair#Failure...


 

 

 


Cheers,

Ivan Jukić,
Meraki APJC

If you found this post helpful, please give it kudos. If it solved your problem, click "accept as solution" so that others can benefit from it.
0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.