Meraki

Community

About rocktreesign

Re: MX100 Warm Spare with Non-Meraki Site to Site VPNs

by Kind of a big deal in Security & SD-WAN
‎Jan 3 2022 9:41 AM
2 Kudos
‎Jan 3 2022 9:41 AM
2 Kudos
(1) - As @PaulMcG stated, you will have to use the VIP address.   For (2) and (3), and you can only get an increase in resilience here by also using a pair of VMX in AWS and Azure so you can use SDWAN.   I've created a guide on how I do this for AWS. https://www.ifm.net.nz/cookbooks/meraki-ha-vmx-amazon-aws.html    Here is a guide for doing it in Azure. https://documentation.meraki.com/MX/Other_Topics/Deploying_Highly_Available_vMX_in_Azure  ... View more

Re: VRRP on LAN side with 2 x MX100 in Warm Spare mode

by Kind of a big deal in Security & SD-WAN
‎Dec 29 2021 2:54 PM
1 Kudo
‎Dec 29 2021 2:54 PM
1 Kudo
@rocktreesign indeed it does just use one internal IP and that lives on the active node in the pair.  Our Sophos firewalls also do the same and I find in both cases it works well. ... View more
© 2025 Cisco Systems, Inc.