We currently have a network of Peplink balance routers connected to each others using speedfusion tunnels with 2 internet lines inside and beside that a third line connected to a private VPN (MPLS) but not taking part of the speedfusion tunnel.
What we have noticed is the issue to configure the health check of the MPLS link. Indeed, monitoring the local PE routers VIP is not a good option as if our remote Hub is not reachable anymore (routing issue or hardware failure) the local won’t notice and is not going to go down. The workaround we found so far is to monitor the remote PE’s IP addresses where our Hub is but this time, it is limited to thes addresses and if any other remote sites is going down, our router won’t notice it.
Therefore, what we have found is to include the MPLS link in the speedfusion and map the local MPLS IP address with the MPLS IP address of the remote peer. However, the MPLS interface still got the ‘health check’ configured as described earlier, So, it is back to square one …
Do you have any design solution that would be able to provide a durable fix to this issue ?
Your feedback is much appreciated.