Hello community! Hoping I can get some guidance here. We've got two buildings that are currently connected via a wireless bridge and two MX84s. Each wireless bridge is connected to Port 4 on the MX84s. Each MX has VLAN2 assigned to Port 4 (with all VLANs allowed) and a static route to force traffic for each building's subnet out of Port 4. There is also a static route on building 2's MX84 that directs VPN client traffic back to building 1's MX84.   Now, we were hoping to configure a WAN VPN tunnel between the two buildings as well. In that scenario the wireless bridge would be the primary connection and if it goes down we're hoping the connection would fall back to the WAN VPN tunnel. When attempting to bring building 2 up as a Spoke in a Site-to-Site VPN configuration with building 1 we receive an error stating the configuration could not be saved due to overlapping and conflicting subnets but if we set all of the subnets not to Use VPN on building 2's MX84 wouldn't that mean that in a failover situation the WAN VPN tunnel would come up but no traffic would pass between the buildings?   We're happy to call support but thought maybe we'd try the community first. Thanks for any advice! ... View more