What is Aviatrix ActiveMesh?¶
ActiveMesh is the new Aviatrix Encrypted Transit Network architecture where both primary gateways and backup gateways forward packets in a load balancing fashion.
The diagram below shows an ActiveMesh deployment between Spoke and Transit where each spoke gateway in a VPC builds two IPSEC tunnels to the primary and backup transit gateways and forwards packets to both of them inside the tunnel. The load balance mechanism leverages ECMP protocol.
Can ActiveMesh be applied to Transit gateway peering?¶
Yes. ActiveMesh can be applied to connecting two Transit GWs. There are 4 tunnels established between the Transit GWs, as shown in the diagram below.
Can ActiveMesh be applied to connection to VGW?¶
Yes. Each Transit GW connecting to VGW in ActiveMesh mode has two tunnels to VPN connection in the VGW.
How do Spoke gateways load balance traffic from EC2 instance?¶
In the current Release 5.0, VPC route table points to only one Spoke gateway, so there is no load balancing for traffic initiated from EC2 instances. But traffic from Transit GW to Spoke VPC is load balanced to the two Spoke gateways.
What are the advantages of ActiveMesh?¶
The key benefits of ActiveMesh are improved network resiliency, failover convergence time and performance.
How to enable ActiveMesh?¶
ActiveMesh is not enabled by default. Follow the Aviatrix Encrypted Transit Network workflow to enable ActiveMesh mode.
How to troubleshoot ActiveMesh deployment?¶
Go to Transit Network -> List. Select either the Transit GW or a spoke gateway, click Show Details.
How to migrate from the encrypted transit network to ActiveMesh mode?¶
Here are the steps:
- Launch a new Transit GW and enable ActiveMesh on it.
- Detach a current spoke and attach it to the new Transit GW.
Can ActiveMesh be applied to Azure?¶