Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
3499
Views
0
Helpful
3
Replies

Meraki MX site-to-site VPN with Oracle (or AWS) with dual tunnels

sw28671
Level 1
Level 1

‎05-24-2022 05:07 PM

I have one Meraki MX250 and need to establish a site-to-site VPN with Oracle Cloud.  Oracle creates two tunnels for its site-to-site VPN, and each tunnel has a unique public IP.  Apparently, AWS does this too.

 

I'm assuming that for my case, the Oracle subnets for both tunnels are the same.

 

I’m reading online that Meraki only supports connecting to one tunnel at a time. The AWS documentation says,

 

This configuration consists of two tunnels. Cisco Meraki is a Policy based VPN device and it doesn't support Active/Standby setup with AWS hosted VPN solution. You can configure only one of the two tunnels as active.

Another online source says,

 

You will notice that there are two IPSec Tunnels from Oracle’s side. Meraki only supports connecting to one at a time. Ensure all of your settings are consistent for one tunnel as they have different Preshared secrets and IP addresses.

I believe I have the information needed to set up the VPN on the MX to one of the Oracle tunnels.  My question is, what do I do about the second Oracle tunnel?

Do I create the VPN for the second Oracle tunnel and try to bring it up?

 

Do I create the VPN for the second Oracle tunnel and disable it until needed (the first tunnel fails)?

 

Thanks in advance for your help!

Labels:
0 Helpful
3 Replies 3

Sheraz.Salim
VIP Alumni
VIP Alumni

‎05-25-2022 12:48 AM

@sw28671 I looked what you describe what i found there does not seem to any way Here this link is for Meraki to AWS. same issue the one you coming across. also find this link might help you here and here 

please do not forget to rate.
0 Helpful

sw28671
Level 1
Level 1
In response to Sheraz.Salim

‎05-26-2022 06:31 AM

Thanks Sheraz.Salim, I had read those articles already.  But they really don't answer my question.  Let me rephrase.  Based on everything I've read, I believe it's not possible for Meraki to connect to BOTH Oracle tunnels at the same time.  BUT... I do believe Meraki can connect to ONE of the Oracle tunnels.  So, should I just "ignore" the second tunnel?  I understand it's not ideal...

0 Helpful

Sheraz.Salim
VIP Alumni
VIP Alumni
In response to sw28671

‎05-26-2022 07:11 AM

sw28671 I looked on the documentation could no find it. Yes based on your scenario Maraki can connect to one tunnel at a given time if this tunnel goes down you you have bring up the other one.

please do not forget to rate.
0 Helpful
Customers Also Viewed These Support Documents
Top