Hello, Sorry if this is a bit broad, but just need a nudge in the right direction. Struggling with how to utilize Metro Ethernet as an SD-WAN path for RO WAN/LAN traffic through HO, and if it is even possible. Also, similar issue, how to approach using IPsec failover for local LAN traffic in the event Metro Ethernet is down. Goals are: To provide failover for LAN and WAN traffic at remotes using IPsec to HO (currently LAN->MetroE, WAN->CableModem) To provide load balancing for LAN traffic at ROs to HO using the MetroE & IPsec paths Current schema: Network LAN traffic is passing over Metro Ethernet to Head Office fine, with OSPF configured and working for 13 RO subnets. Local internet traffic is passing over local internet interfaces. Remote Offices XG125/135/210 v18-EAP3. Port 1 – LAN (local networks) 192.168.n.x/24 Port 2 – WAN (internet and testing IPsec VPN to HO) using local cable modem Port 4 – LAN (Metro Ethernet handoff) 172.30.255.x Head Office XG230 v18-EAP3. Port 1 – LAN (local networks) 192.168.x.x/16 Port 2 – WAN (HO internet, and planned backup internet for ROs) Port 3 – DMZ Port 4 – LAN (Metro Ethernet handoff) 172.30.255.x Port 5 – WAN (testing IPsec VPN to ROs) Port 6 - HA Thanks, Paul

Brainstorming for multi-site LAN (local), WAN (w/IPsec VPN), LAN (Metro Ethernet) setup

Hello,

Sorry if this is a bit broad, but just need a nudge in the right direction.

Struggling with how to utilize Metro Ethernet as an SD-WAN path for RO WAN/LAN traffic through HO, and if it is even possible.

Also, similar issue, how to approach using IPsec failover for local LAN traffic in the event Metro Ethernet is down.

Goals are:

To provide failover for LAN and WAN traffic at remotes using IPsec to HO (currently LAN->MetroE, WAN->CableModem)
To provide load balancing for LAN traffic at ROs to HO using the MetroE & IPsec paths

Current schema:

Network LAN traffic is passing over Metro Ethernet to Head Office fine, with OSPF configured and working for 13 RO subnets.
Local internet traffic is passing over local internet interfaces.

Remote Offices XG125/135/210 v18-EAP3.

Port 1 – LAN (local networks) 192.168.n.x/24

Port 2 – WAN (internet and testing IPsec VPN to HO) using local cable modem

Port 4 – LAN (Metro Ethernet handoff) 172.30.255.x

Head Office XG230 v18-EAP3.

Port 1 – LAN (local networks) 192.168.x.x/16

Port 2 – WAN (HO internet, and planned backup internet for ROs)

Port 3 – DMZ

Port 4 – LAN (Metro Ethernet handoff) 172.30.255.x

Port 5 – WAN (testing IPsec VPN to ROs)

Port 6 - HA

Thanks,

Paul

Parents

Reply

Children

No Data