Uplink Usage

AnkitSharma1
Here to help

Uplink Usage

I performed the failover to test the ISP performance from secondary to primary. Now, the secondary ISP has become primary. However, I am noticing that the majority of the traffic is still going through the secondary, which was primary earlier. Load balancing is already enabled."

 

AnkitSharma1_0-1708111089391.png

 

 

AnkitSharma1_1-1708111135408.png

 

 

17 Replies 17
alemabrahao
Kind of a big deal
Kind of a big deal

How did you change the secondary link to become primary?
 
Do you have any forwarding settings configured?
 

The MX can be configured to use both of its uplinks for load balancing. When load balancing is enabled under Security & SD-WAN > Configure > SD-WAN & Traffic shaping, traffic flows will be distributed between the two uplinks. The load distribution is based on the WAN 1 and WAN 2 throughput configured under Uplink configuration, such that the uplink with more throughput will distribute more flows.

In the example below, WAN 1 is configured to pass 50Mb/s, and WAN 2 is configured to pass 10Mb/s. Since the download speed ratio is 5/1, for every five flows sent over WAN 1, a single flow will be sent over WAN 2:

 

alemabrahao_0-1708112668330.png

Internet Traffic

Flow preferences for internet-bound traffic can be configured to force traffic over a specific uplink based on its source and/or destination. These preferences can be used if a specific uplink should be designated for a particular type of traffic, such as traffic bound for a cloud-hosted service. 

Note: ICMP traffic is not subject to traffic shaping rules. As a result, Flow Preference will have no impact on ICMP traffic.

To create a flow preference for internet traffic:

  1. In Dashboard, navigate to Security & SD-WAN > Configure > SD-WAN & Traffic shaping.
  2. Navigate to Flow preferences, and under Internet traffic, select Add a preference.
  3. Define the traffic that will be assigned a designated uplink:
    • Protocol - TCP, UDP, or Any (where '"Any" implies that it is any of the selectable options and not any type of traffic)
    • Source - Source IP, using CIDR notation.
    • Src port - Source port, or "Any".
    • Destination - Destination IP, using CIDR notation.
    • Dst port - Destination port, or "Any".
    • Preferred uplink - The uplink this traffic will be sent over.
  4. Click Save Changes.

 

alemabrahao_1-1708112711532.png

 

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Load_Balancing_and_Flow_Preferen...

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
AnkitSharma1
Here to help

I just did that graceful failover by going to below settings so that's mean - Primary ISP which is now secondary are giving more throughput 

AnkitSharma1_0-1708113222530.png

 

alemabrahao
Kind of a big deal
Kind of a big deal

When load balancing is enabled traffic flows will be distributed between the two uplinks. The load distribution is based on the WAN 1 and WAN 2 throughput configured under Uplink configuration, such that the uplink with more throughput will distribute more flows.

 

My suggestion is to disable load balancing to test.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
AnkitSharma1
Here to help

Is there anyway to measure the primary ISP performance ? Is it bad compare to secondary ISP or better?

alemabrahao
Kind of a big deal
Kind of a big deal

Disable balancing, set the primary uplink to the WAN you want to test and use a website like Speed Test to measure each link.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
AnkitSharma1
Here to help

Thank you I will do that

 

Once i disabled the load balancing - I can also ping both the ISP IP's and monitor for any latency or packet loss..

AnkitSharma1
Here to help

I have disabled the load balancing however why do see the spike on secondary link - WAN 2 is a primary uplink right now

 

AnkitSharma1_0-1708120969246.png

 

AnkitSharma1
Here to help

can you please answer? 

alemabrahao
Kind of a big deal
Kind of a big deal

If you have VPN traffic configured to use WAN 2, this may cause an increase in traffic. Could you check your SD-WAN policy settings?

 

What about Flow preferences > Internet Traffic Configuration?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
AnkitSharma1
Here to help

Flow has nothing here

 

AnkitSharma1_0-1708354742065.png

since all users are in office so I see WAN 2 is being utilized more 

 

AnkitSharma1_1-1708354796187.png

 

 

 

 

alemabrahao
Kind of a big deal
Kind of a big deal

So it's ok, you said that WAN 2 is configured as primary uplink.

 

What's the problem?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
AnkitSharma1
Here to help

Now there is no problem. I just came in and found that. Most of traffic going through WAN2 so I am good.. may be it takes some time to see the changes or verify in operations time.

alemabrahao
Kind of a big deal
Kind of a big deal

Yes, between 2 and 5 minutes.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
AnkitSharma1
Here to help

I have already enabled load balancing. Is there a way to track the network traffic to determine which one is going to WAN 1 or WAN 2?

 

Example- If i ping google.com how to determine that if network traffic is going from WAN1 or WAN2 or they are sharing the bandwidth at the same  like monitor the traffic on WAN1 and WAN2 interfaces separately and observe the traffic patterns when you ping google.com

 

 
alemabrahao
Kind of a big deal
Kind of a big deal

Have you checked the documentation?

 

The MX can be configured to use both of its uplinks for load balancing. When load balancing is enabled under Security & SD-WAN > Configure > SD-WAN & Traffic shaping, traffic flows will be distributed between the two uplinks. The load distribution is based on the WAN 1 and WAN 2 throughput configured under Uplink configuration, such that the uplink with more throughput will distribute more flows.

 

In the example below, WAN 1 is configured to pass 50Mb/s, and WAN 2 is configured to pass 10Mb/s. Since the download speed ratio is 5/1, for every five flows sent over WAN 1, a single flow will be sent over WAN 2:

 

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Load_Balancing_and_Flow_Preferen...

 

I suggest you to read the documentation.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
PhilipDAth
Kind of a big deal
Kind of a big deal

If you want immediate failback and don't care if existing connections are torn down change the "fallback behaviour" to immediate.

AnkitSharma1
Here to help

I have not configured the uplink configuration here

 

its default 

AnkitSharma1_1-1708113455923.png

 

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels