Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

One-Armed Conentrator HA

Maiquel
Comes here often
‎Feb 5 2018 4:16 PM
‎Feb 5 2018 4:16 PM

One-Armed Conentrator HA

Hello Folks,

This is my first post on community.

I have 2 x MX450 in HA mode one-arm vpn Concentrator over Palo Alto Firewall. In MX1 Internet interface 10.9.2.120 MX2 Internet interface 10.9.2.121 and WAN 1 shared IP 10.9.2.122.
In my branch i have 1 link MPLS and 1 Link internet all connected in the meraki cloud. When i put the concentrator in HA mode the VPN with Branch over Internet does not work, just over MPLS. I remove the cable in the branch wan2 (MPLS), but route show-me "bad". When i remove the HA all its ok.

0 Kudos
Subscribe
2 Replies 2
MilesMeraki
Head in the Cloud
‎Feb 6 2018 1:27 AM
‎Feb 6 2018 1:27 AM

Hello @Maiquel, welcome to the community.

 

Just so that I follow you when you remove the HA arrangement (i.e you have two separate MX450 in concentrator mode), the Auto-VPN over MPLS and internet for the Branch is up. When you put the MX450's into HA, the Auto-VPN works only over the MPLS connection?

 

Is this a correct assumption of your problem?

Eliot F | Simplifying IT with Cloud Solutions
Found this helpful? Give me some Kudos! (click on the little up-arrow below)
0 Kudos
Subscribe
In response to MilesMeraki
Maiquel
Comes here often
‎Feb 8 2018 3:04 AM
‎Feb 8 2018 3:04 AM

Hi @MilesMeraki, tks for your help.

 

I had some problem with ACL and NAT over Palo Alto for VRRP VIP. I did change and it worked. 

 

 

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.