Meraki

Community

Problems with secondary VPN on MX100 and a forti

ReyesPolanco
Here to help
3 hours ago
3 hours ago

Problems with secondary VPN on MX100 and a forti

I have a small problem. I currently have a primary VPN configured that works properly. However, I wanted to configure a secondary VPN with the same parameters, and it starts up but doesn't establish communication with the segments on the Forti side. I've run Forti with debugs, and there doesn't seem to be any problem. Is this a limitation of Meraki compared to other vendors? It's worth mentioning that we're using two links on both sides, and the primary VPN works fine.

Labels:
0 Kudos
3 Replies 3
PhilipDAth
Kind of a big deal
Kind of a big deal
3 hours ago
3 hours ago

When you say you are trying to establish a second VPN, I assume you mean to a different Fortinet firewall somewhere else?

 

You can only have a single VPN between a pair of devices.

0 Kudos
In response to PhilipDAth
GIdenJoe
Kind of a big deal
Kind of a big deal
2 hours ago
2 hours ago

If you have 2 WAN's on each side, wouldn't that be enough to create your secondary tunnel?
I know the intention of the feature is to work with 2 cloud entry points for any SASE solution but I'm just curious what would be the factor that prevents this from working.

0 Kudos
In response to PhilipDAth
ReyesPolanco
Here to help
49m ago
49m ago

I'm trying to set up two VPNs so that if WAN 1 goes down, WAN 2 will take over. However, when I simulate a WAN 1 outage, the secondary VPN comes back online but there's no traffic. Is this also not possible?

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.