I have 1 MX 250 is setup as a hub ( One arm concentrator mode) in our corporate location and the MX Z3 as the spoke, I see the S2S is up from Meraki dashboard, however I cannot ping or use any traffic between the VPN, The config is follows,
If you are using the Meraki Hub/Spoke I don't think you should need any static routes as long as the desired LANs are set to 'Use VPN' 'Yes'. View Security Appliance>Route Table and search for the subnet of the spoke site and it should show something like this with a green bubble in the status.
Meraki VPN: VLAN Peer: Spoke Name - appliance
Adam R MS | CISSP, CISM, VCP, MCITP, CCNP, ITILv3, CMNO If this was helpful click the Kudo button below If my reply solved your issue, please mark it as a solution.
@Adam we might be talking about different things. Not a static route on the MX, but one on the gateway for the MX, whatever router that is. This way the rest of the network can reach the remote subnet.
@Dilkush123 Huh, if you have both things Adam and I suggested then I'm at a bit of a loss. Can you post up some configs of the MX? and maybe the routing table on the gateway?
Thanks for your help, I have the configuration was fine, however I had 2 hubs configured to use the same hub subnet ( Kind of DC-DC to failover ) and I have removed the one Hub from the dashboard and it started working as normal.
Now I need to figure out how this DC-DC failover works for the same DC subnets, as the our DC Internally connected using the MPLS, how these same subnets can advertise from both DC end points to our internal network..