cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Choose one of the topics below for SD-WAN Resources to help you on your journey with SD-WAN

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC!
We will not comment or assist with your TAC case in these forums.

272
Views
0
Helpful
2
Replies
DaeHeon Kang
Beginner

SDWAN WAN link failover solution

Hi,

 

I am seeking for the best solution for WAN link failover at our organization environment where has two WAN link connections(each MPLS type WAN link and Internet link having Zscaler proxy service via GRE tunnel) as below picture.

The goal that I'm trying to achieve is use MPLS WAN link as the primary to the Internet and the Internet access is redirected to Internet link(Zscaler proxy) when the primary link goes down.

*Currently, SDWAN Edge router is receiving the default route from only MPLS WAN link, not using Internet links for service vpn.

I just guess if I add one more default route using Internet link(Zscaler proxy), but how can I make MPLS link is the primary and Zscaler GRE link is as the secondary?

 

Capture.PNG

 

 

 

 

 

 

2 REPLIES 2
Kanan Huseynli
Participant

Hi,

 

what do you mean "receiving default from MPLS" ? If you mean underlay network, then the 2nd default route does not make problem.

In SD-WAN, one interface can't use next-hop over another interface.

 

If you mean for overlay (receiving via OMP), then you may do primary/secondary failover just with increasing administrative distance for zscaler. I hope, you tunnel interface for zscaler in service-side VPN, then you may add default route but with higher admin. distance.

 

HTH,

Hi Kanan,

 

It's transport-side VPN running, not service-side VPN. Given this environment, I don't see any AD parameter with the static route with GRE next hop from my checking the configuration template.

Please correct me if I am incorrect.