The Meraki Community
Register or Sign in
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
  • About GP185
GP185

GP185

Here to help

Member since May 26, 2022

2 weeks ago
Kudos given to
User Count
MyHomeNWLab
MyHomeNWLab
3
ww
Kind of a big deal ww
1
View All

Community Record

6
Posts
0
Kudos
0
Solutions

Badges

Everybody Wins
First 5 Posts
Lift-Off View All
Latest Contributions by GP185
  • Topics GP185 has Participated In
  • Latest Contributions by GP185

Re: Meraki MX-250 HA pair and Azure VPN Gateways IPSEC failover.

by GP185 in Security / SD-WAN
‎05-31-2022 04:06 PM
‎05-31-2022 04:06 PM
Thanks so much, mate! It's amazing! I really appreciate your time for setting up the scenario and sharing the results! It's brilliant! ... View more

Re: Meraki MX-250 HA pair and Azure VPN Gateways IPSEC failover.

by GP185 in Security / SD-WAN
‎05-30-2022 08:43 PM
‎05-30-2022 08:43 PM
Thanks mate! So I understand Meraki would re-establish IPSEC over WAN2 and as long as 2 tunnels are pre-configured on Azure VPN gateway - we should be fine ... View more

Re: Meraki MX-250 HA pair and Azure VPN Gateways IPSEC failover.

by GP185 in Security / SD-WAN
‎05-29-2022 04:54 PM
‎05-29-2022 04:54 PM
Thank you!  So does it mean IPSEC failover to secondary WAN2 will work with Azure VPN Gateway? Did anyone try this? If we configure 2 x different IPSEC tunnels on Azure VPN gateway with different destination IPs (one per ISP), and only one IPSEC tunnel from MX to Azure VPN Gateway, when failover from WAN1 to WAN2 occurs would the tunnel be re-established over the secondary ISP?  ... View more

Re: Meraki MX-250 HA pair and Azure VPN Gateways IPSEC failover.

by GP185 in Security / SD-WAN
‎05-27-2022 05:35 AM
‎05-27-2022 05:35 AM
Thanks, how did you manage to verify this?  Does it mean that IPSEC tunnel on the MX is not tied to a specific WAN interface - it will use whatever is available at the moment with WAN1 being the preferred? I could not find any configuration setting that would specify source interface for the IPSEC NON-Meraki tunnel.  ... View more

Re: Meraki MX-250 HA pair and Azure VPN Gateways IPSEC failover.

by GP185 in Security / SD-WAN
‎05-27-2022 03:29 AM
‎05-27-2022 03:29 AM
Thanks a lot - I saw this example. I was trying to do something a little bit different though - configure just one single tunnel on Meraki MX with Destination IP being Azure VPN Gateway in Region 1. On the Azure VPN Gateway configure two seperate IPSEC tunnels with different destination IPs - one with destination IP of the Left MX WAN1 and the second one with Destination IP of Left MX WAN2. If WAN1 fails or ISP1 fails - MX will detect this using DPD and start initiating IPSEC tunnel over WAN2. Azure VPN gateway should accept the request as the second tunnel was pre-configured. Hope that makes sense. ... View more

Meraki MX-250 HA pair and Azure VPN Gateways IPSEC failover.

by GP185 in Security / SD-WAN
‎05-26-2022 11:19 PM
‎05-26-2022 11:19 PM
Hi Team,   Can you please help me to understand whether or not this topology would work? The idea is configure 2x seperate IPSEC VPN tunnels on Azure VPN gateway (each would have a relevant destination VIP per ISP)  and have only one Tunnel configured on the MX-250 with destination IP being VPN gateway public IP. What I don't understand in case of WAN1 (ISP1) failure - direct or indirect, would the tunnel automatically re-build with WAN2 source IP or not?         ... View more
Kudos given to
User Count
MyHomeNWLab
MyHomeNWLab
3
ww
Kind of a big deal ww
1
View All
custom.footer.
  • Community Guidelines
  • Cisco Privacy
  • Khoros Privacy
  • Privacy Settings
  • Terms of Use
© 2022 Meraki