Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

TRAFFIC FLOW ANALYSIS FROM LAN, MX95 TO WAN

Mazide
Here to help
a week ago
a week ago

TRAFFIC FLOW ANALYSIS FROM LAN, MX95 TO WAN

 

Hello everyone! I hope you’re all doing well,

 

I have a question regarding Option 6: Two MX, two ISPs (4), and I’d like to clarify the traffic flow in the event of a primary MX failure. Would the traffic be routed through the switch connected to ISP1 or ISP2? Both switches are L3 managed but do not support load balancing—how does this affect traffic distribution? Will both ISPs be utilized simultaneously? I’m particularly interested in understanding how traffic flows from the internal LAN to the Meraki, through the two switches to the ISPs, especially if the primary MX fails. In that scenario, what would the traffic path look like? Would both switches share the load, or would only one be active?

 

Thank you!

 

Mazide_1-1727293861411.png

 

 

Labels:
0 Kudos
Subscribe
7 Replies 7
ww
Kind of a big deal
Kind of a big deal
a week ago
a week ago

Both can be used. If you have configed the load balancing/ flow pref on mx.

You already made the drawing

 

Subscribe
In response to ww
Mazide
Here to help
a week ago
a week ago

I'm currently simulating this setup in Packet Tracer. Right now, all the traffic is going through ISP1, and I'm trying to figure out why the second router won't forward traffic when the first one goes down. I understand it's just Packet Tracer 😞 just using it to get a general idea of the behavior.

Thanks for your explanation. I think PhilipDAth is also explaining the same concept.

0 Kudos
Subscribe
PhilipDAth
Kind of a big deal
Kind of a big deal
a week ago
a week ago

If you have configured ISP1 to be the primary, it will use the top switch.

If you have configured ISP2 to be the primary, it will be the bottom switch.

If you have configured ISP1 and ISP2 to be load balanced, both switches will be used.

Subscribe
In response to PhilipDAth
Mazide
Here to help
a week ago
a week ago

I was aware of the first two options but not the third one (load balancing between ISP1 and ISP2). With the monitoring tool we have both WAN interfaces are added but only one is forwarding traffic. I’ll change that asap.   Thanks Phil!

0 Kudos
Subscribe
GIdenJoe
Kind of a big deal
Kind of a big deal
a week ago
a week ago

Your drawing is incorrect.
The uplink switches are connected to LAN ports instead of WAN ports which is incorrect.
Each MX WAN uplink cannot be split on the MX itself.  So basically for WAN1 you can only have 1 cable coming from the MX to the uplink switch.

So each MX should have 1 line going to the upper switch for ISP 1 and each MX should have 1 line going to the lower switch for ISP 2.

In case of a device failure, VRRP will make the spare take over and the spare will use the same primary ISP as configured in dashboard.

0 Kudos
Subscribe
In response to GIdenJoe
Mazide
Here to help
a week ago
a week ago

It might not have been clear, but each different cable color represents a different VLAN. The purple cable running over each MX to the uplink switches is for the management VLAN, which serves a different purpose than forwarding WAN traffic.

0 Kudos
Subscribe
In response to Mazide
GIdenJoe
Kind of a big deal
Kind of a big deal
Saturday
Saturday

So may I assume, green is ISP 1 and blue is ISP 2?  Each MX can only have 1 WAN cable per WAN, you can't use the LAN ports as WAN ports.

In that case it is quite easy.
If the primary MX goes down, the spare takes over due to missing VRRP messages, and since ISP 1 is still configured as primary WAN, the spare MX will use the diagonal green link towards the upper switch to reach ISP 1.

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.