Hello,
One of our customers use Cisco MX250 devices and they are interested in setting up redundancy with our infrastructure hosted in AWS. I have been tasked to set it up, unfortunately, neither do I have proper understanding of Cisco Meraki MX250 configuration and setup, nor do I have in-depth knowledge to setup Redundant VPNs at AWS side.
I have tried to setup a demo environment at our corporate end and AWS using BGP. Our Corporate is using ForcePoint and I setup as per: https://docs.aws.amazon.com/vpn/latest/s2svpn/vpn-redundant-connection.html
From AWS
It was successful and I tested it when one corporate network is down, the other one handles the traffic. This is all good. However, when I checked with AWS on Cisco Meraki, they didnt have much exposure on that front and while checking internet, I couldnt really land in any blog or docs which specifies what needs to be done. I presumed Cisco Meraki MX250 would follow the same sort of stuff, but apparently I am wrong. When I informed our customer about BGP, they came back on the necessity and I quote them:
"We're using MX250 with two WAN ports configured, WAN 1 for X.X.X.X and WAN 2 for Y.Y.Y.Y. WAN 1 is the primary line and configured <Company> site to site VPN. Failover to WAN 2 happens automatically when WAN 1 is down and vice versa.
Do we still need BGP since we're using only one router?"
I was hoping if anyone can give me some insight on how do I setup HA Redundant VPN with Cisco Meraki MX250 and AWS? I would have reached out to Cisco Support, but we dont use any Cisco services to leverage that.
At this moment, I am in total darkness 😞
Any help would be much appreciated...
Regards,