cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
  • About Ray_7

Re: Multiple MX Hubs in single Organization - BGP peering

by in Security / SD-WAN
‎10-30-2022 12:38 PM
2 Kudos
‎10-30-2022 12:38 PM
2 Kudos
It was support that indicated we are exceeding the limit of flows the MX can handle - I haven't found a way to verify/monitor the overall flows on an MX. The symptoms that initiated the support request was extremley high latency and packet loss. ... View more

Re: Multiple MX Hubs in single Organization - BGP peering

by in Security / SD-WAN
‎10-30-2022 12:25 PM
‎10-30-2022 12:25 PM
Thank you for the replies.   @ww  If I understand correctly, the secondary MX would be creating a longer AS Path to cause the primary MX to be chosen as the route to a spoke network. All MXs are in a single AS as they are all part of the same organization, would this work with more than 2 MXs as there would only be two AS numbers?   @alemabrahao  I have reviewed the BGP page and understand these statements, however, the following is not clear when we introduce multiple MXs. MX 1 and MX 2 will both have identical local networks as they are providing connectivity to the same DC. Will this be permitted to add the same local networks on multiple MXs? (I know this is prevented when an MX in routed mode exists in the organization). Would this be required to have them added this way as these routes will be shared through BGP anyway? A one-armed VPN concentrator will advertise local networks which are not directly connected and are configured on the site-to-site VPN settings page via iBGP, but not via eBGP to external peers   @PhilipDAth  The MX models are MX 450 with about 120 spoke sites. The limitation is the number of flows (500k), tunnels, traffic, etc. are not close to becoming an issue. ... View more

Multiple MX Hubs in single Organization - BGP peering

by in Security / SD-WAN
‎10-30-2022 09:42 AM
‎10-30-2022 09:42 AM
I am relatively new to Meraki and trying to understand how this scenario might work.   Currently over 100 spokes connect to a single HA pair at the DC and BGP is used for sharing DC networks. We have been having issues with reaching the limitations on the MX appliances and are looking to distribute the load of tunnels between multiple hubs. Hub 1 - 50+ spokes, Hub 2 - 50+ spokes - preferrably both hubs configured at all 100 spokes with priority 1,2 vs 2,1 to provide a fail over similar to DC - DC fail over but with 1 DC.   Potentially we would like to have atleast 3 hubs per DC.   1. Would this result in DC routing tables all using a single Hub due to selection by router ID? 2. If only 1 hub is configured at each spoke (either Hub 1 or Hub 2) and manual intervention is used for failover, will both hubs still share all 100 spoke's routes through BGP? 3. As the answer to 1 & 2 may result in this not working, is there another approach having multiple hubs serve spokes from a single DC? ... View more
Labels:
© 2023 Meraki