creating a backup site to site tunnel to cisco ASA

Here to help

creating a backup site to site tunnel to cisco ASA

Hi All

I would like to create a backup site to site vpn tunnel that kicks in if the primary goes down.

Can my Meraki MX device do this? if so do you just replicate the tunnel? and can you set one as primary ?


Head in the Cloud

Speaking from gleaned knowledge rather than experience.

You can't have two tunnels to the same destination on the Meraki side.

The way to implement redundancy for a non Meraki S2S connection is to have a second WAN link on the MX with a separate public IP.

On the ASA, you then configure the backup IP for the tunnel to point to the MX's second WAN link.


In this way, is there is an issue with the primary link, the tunnel will be re-established on the backup link with a very minor impact to network traffic.

Hi There

But the ASA also has a backup IP which we want to use, so are you saying in Meraki, we cannot add this second IP in? 

Kind of a big deal


Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.