Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

vMX Routing failover

Kushan
Here to help
‎Mar 29 2023 10:31 PM
‎Mar 29 2023 10:31 PM

vMX Routing failover

We are deploying vMX in Azure and we are having connectivity to 3rd party DC.

We have some few queries.

 

Primary Traffic Path: vMX in Azure----Static Route--->Azure VPN Gateway----IPsec tunnel---->3rd party DC

Backup Traffic Path: vMX in Azure----Auto VPN------>vMX in AWS----->AWS VPN Gateway----IPsec Tunnel---->3rd Party DC

 

1) Is vMX Routing behavior same as MX Routing behavior ?

 

2)  If vMX stops receiving route via Static Route (even though connection to peer is up) , will it automatically failover traffic to Auto VPN Tunnel ?

 

 

 

 

0 Kudos
Subscribe
1 Reply 1
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Mar 30 2023 3:36 PM
‎Mar 30 2023 3:36 PM

No.  The static route knows nothing about the state of the Azure VPN gateway and will always be up.

 

I have not used this, but there is a guide that shows setting up a VMX using BGP.  That is more likely to work.

https://github.com/MitchellGulledge/Azure_Route_Server_Meraki_vMX 

 

BUT - how will the third party know which return path to use?

 

I think the only bullet proof method would be to put your own MX (in VPN concentrator mode) into the 3rd party DC, so you can run AutoVPN end to end.  You would no longer use either the AWS or Azure VPN gateways in this scenario.

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
© 2024 Cisco Systems, Inc.