Technical > Deployment

Peering Between Multiple Remote Sites?

(1/1)

Spiffster:
Do remote sites need to be setup as peers to one another, like a mesh setup vs hub and spoke? There will occasionally be direct data transfers between one remote site to another remote site. The firewalls here have a VPN setup that is hub and spoke topology, but data transferred between remote sites will not traverse the wanos box at the main site since the firewall will just pass (route) the data on to the other remote site.

ahenning:
They don't need to, but if the inter-branch traffic needs to be optimized, then a MultiSite config on the spokes is needed.

If the mesh inter-branch traffic is insignificant, then the spoke sites traffic can fall within a default #99 bypass policy. In this case only traffic destined to the hub site is optimized and inter-branch traffic falls in a bypass rule.

Note: Having inter-branch traffic optimized (default) without a MultiSite config will cause the datastores to go out of sync and have a negative impact.

Navigation

[0] Message Index