Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

MX85 dual link flow preference while loadsharing

Scott3
Comes here often
‎Aug 23 2023 3:47 AM
‎Aug 23 2023 3:47 AM

MX85 dual link flow preference while loadsharing

I have a customer that wants to loadshare down two ISP links on a single mx85 to a non meraki vpn. And also have flow preference for some traffic outside of vpn. Is this possible?

looks to me like either or not both.

Labels:
0 Kudos
Subscribe
3 Replies 3
alemabrahao
Kind of a big deal
Kind of a big deal
‎Aug 23 2023 4:06 AM
‎Aug 23 2023 4:06 AM

I think that you need a Secure SD-WAN Plus license.

 

https://documentation.meraki.com/General_Administration/Licensing/Meraki_MX_Security_and_SD-WAN_Lice...

 

VPN Full-Tunnel Exclusion (Application and IP/URL Based Local Internet Breakout)

 

Overview

VPN full-tunnel exclusion is a feature on the MX and Z Series devices whereby the administrator can configure layer-3 (and some layer-7) rules to determine exceptions to a full-tunnel VPN configuration. This feature is also known as Local Internet Breakout in the industry. The feature applies to both AutoVPN and Non-Meraki VPN (NMVPN) connections.

 

When configuring a VPN spoke, the administrator can choose what client traffic is sent to the hub: either only traffic destined for subnets that are part of the VPN or all traffic that does not have a more specific route than the default route. This choice is made in Dashboard by checking the Default Route box for the desired hub on the Site-to-site VPN configuration page or by having a NMVPN VPN with a default route associated. On the MX-Z, this changes the default route from pointing to the uplink to pointing to the VPN hub or NMVPN peer.

 

https://documentation.meraki.com/MX/Site-to-site_VPN/VPN_Full-Tunnel_Exclusion_(Application_and_IP%2...)

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
In response to alemabrahao
Malwina
Meraki Employee
Meraki Employee
‎Aug 23 2023 4:20 AM
‎Aug 23 2023 4:20 AM

*Working link to VPN Full-Tunnel Exclusion (Application and IP/URL Based Local Internet Breakout) documentation:

https://documentation.meraki.com/MX/Site-to-site_VPN/VPN_Full-Tunnel_Exclusion_(Application_and_IP%2...

 

 

0 Kudos
Subscribe
GreenMan
Meraki Employee
Meraki Employee
‎Aug 23 2023 5:33 AM
‎Aug 23 2023 5:33 AM

The non-Meraki VPN cannot load-share.

Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.