We have a similar scenario with no Internet access on the MPLS circuit, so no way to communicate with the VPN registry. We were thinking of an L3 device between the MX and MPLS circuit to route non-tunneled traffic back through the LAN interface of the MX for Internet connectivity. Is this how you accomplished your deployment, or do you have Internet access on your MPLS circuit?
... View more
