Hot!Redundant topology with SD-WAN (MPLs + IPSEC)

Author
Edemar
New Member
  • Total Posts : 6
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/02/16 15:07:34
  • Status: offline
2020/09/29 06:29:00 (permalink)
0

Redundant topology with SD-WAN (MPLs + IPSEC)

Good morning everyone
I have a question that I don’t know if there is a solution, due to lack of knowledge in SD-WAN.
I need to have a way to make my MPLS redundant through an IPSEC. I did this with SD-WAN and obitive a certain success, but here a problem arose, due to the poor quality of MPLS, often the traffic is routed to IPSEC; here I need this to happen only in cases of a fall or when the quality is really bad. I also test by making the manual SD-WAN Rules, but there comes the case that sometimes the MPLS runs out of traffic, but the interface remains on, requiring manual intervention.

I tested it with an IPSEC tunnel inside MPLS, but here I lose the QoS metrics
 
Is there any smart way out for this case?
thanks in advance
 
I'm using fortios 6.4.2
#1

1 Reply Related Threads

    nsec
    New Member
    • Total Posts : 2
    • Scores: 0
    • Reward points: 0
    • Joined: 2020/10/01 04:43:53
    • Status: offline
    Re: Redundant topology with SD-WAN (MPLs + IPSEC) 2020/10/01 05:14:34 (permalink)
    0
    Hi,
    read this section (6.4.2) SD-WAN->Performance SLA->Link health monitor:
    https://docs.fortinet.com/document/fortigate/latest/administration-guide/580649/link-health-monitor
     
    --
    n
    #2
    Jump to:
    © 2020 APG vNext Commercial Version 5.5