Re: overlapping subnet mpls and sdwan
This situation really is ...frelled.
Enabling 'overlapping subnets' or 'asymmetrical routing' will effectively disable stateful firewalling, and RPF checks. Without state, there is not much left of a firewall, just a simple packet filter.
IMHO there is no way but to redesign the address space. (Admins should be punished for using 192.168.[0-2].0/24 in a live network...).
What if you create a VDOM for the WAN side, and use the remaining root VDOM for the LAN side? Maybe you could then NAT all traffic across the inter-VDOM link and thus avoid the address conflicts. Just a thought.
Ede " Kernel panic: Aiee, killing interrupt handler!"