I have recently deployed Active/Active DC-DC failover topology where I have installed a Meraki MX84 in two of our Datacenters. It has issue during failover on spoke site as it don't get failover to secondary headend/hub when LAN port of primary headend goes down. During the event of LAN port down, Primary Headend still keep the static routes in routing table. These INVALID static route with unreachable next-hop still shows in VPN route table. This makes VPN to advertise INVALID routes to spoke. Spoke continue to send traffic to primary headend where it get dropped as it find no further path. Meraki support suggested that what ever the status of next-hop, INVALID route will still there in VPN. I have made a request though WISH.
... View more
