@ArielA, the MX doesn’t support any dynamic routing protocol on the WAN interfaces when set up in routed/NAT mode, so you first need to address that. You’ll need to speak with the MPLS VPN provider to see if they can set up a default route for the customer within the MPLS VPN. You then configure static addressing and default gateway on the MX WAN port and the MPLS network takes care of the routing. Once the default route is in place on the MPLS VPN, establishing the SD-WAN on top of this is then pretty much the same outcome as the GRE tunnel you have at the moment except that it uses IPsec and it’s a lot more auto-magic, but you need the routing in the MPLS network to support it. If the MPLS provider can’t provide a default route directly within the MPLS VPN then the MX probably isn’t the solution (yes, you could do GRE tunnels to a Cisco router, then put the MX on the end of it, but you’ll be doing an IPsec tunnel in a GRE tunnel). Personally if the MPLS provider can’t provide the default route I’d kick the MPLS provider and either find another one or do SD-WAN over internet links.
... View more