direct site connection participation in SD-WAN

SOLVED
TravisFleming1
Conversationalist

direct site connection participation in SD-WAN

Hello,

We recently bought a company in Canada, and we are in the USA. They have a Meraki setup so we purchased two MX 100's and a direct layer 2 EVPL connection between us and them through different MPLS providers. What we would like to do is create an SD-WAN connection using our internet connections and this EVPL to each other. Like an MPLS, there is no default gateway to get to the internet on this layer 2 connection. Currently it just lands on a switch on either side and we mark a specific VLAN for segmentation on the switch, then plug into the MX 100's port 2 on either side.

 

Wondering if someone can lead me to documentation on how to set this up? With the MX 100 you can have 2 ISP's, but when I go to configure port 2 as the port 2 WAN, it asks for a default gateway. We intend to put an IP address on the MX devices for each end of the connection. I can provide more details if needed.

1 ACCEPTED SOLUTION
ww
Kind of a big deal
Kind of a big deal

4 REPLIES 4
ww
Kind of a big deal
Kind of a big deal

Hi.

You need internet on wan2. If you dont have that just use a LAN port and use static routing on that.

 

https://documentation.meraki.com/MX/Networks_and_Routing/Integrating_an_MPLS_Connection_on_the_MX_LA...

 

https://documentation.meraki.com/MX/Deployment_Guides/MPLS_Failover_to_Meraki_Auto_VPN

 

If you want to use wan2 anyway  then you need to add a internet gw to that evpl vlan.

 

https://documentation.meraki.com/MX/Site-to-site_VPN/Configuring_Site-to-site_VPN_over_MPLS

 

cmr
Kind of a big deal
Kind of a big deal

@TravisFleming1 put the MXs on your site inside the LAN in single armed concentrator mode.  Connect the MPLS circuit to your LAN and at the other end to WAN 2 on their site, presumably that was spare?  Make sure that their MX WAN2 can reach the internet via your LAN by setting the correct routes. Enable SD-WAN on the network that contains the MXs at your site and the MXs on your site should connect to their MXs and use both routes.

Bruce
Kind of a big deal

@TravisFleming1, follow what @cmr describes using the MX on your site in one-arm concentrator mode - that should get you what you need.

TravisFleming1
Conversationalist

Talked with Meraki support and the solution you had about MPLS failover ot Meraki Auto VPN was spot on. Adding a static route down our EVPN with the "when next hop is active" option was the ticket. It will use our low latency EVPN when it's up, if that goes down, it will use the internet path. Thanks!

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels