Meraki

Community

Teleworker VPN access to different vlans

cam-cart
Just browsing
a week ago
a week ago

Teleworker VPN access to different vlans

Hi guys, 

 

I just configure a teleworker vpn to have access to the resources in some of the vlans of the company, however we just have access to the vlan configured in "Vlan tagging ID". Is there any way to have access to the other vlans apart from the vlan selected?. 

 

 

camcart_0-1749243398905.png

 

0 Kudos
7 Replies 7
Mloraditch
Kind of a big deal
a week ago
a week ago

This setting is putting that SSIDs clients on VLAN 205 on DC-DCIM2. If that VLAN has access to those other things clients on that SSID will  have access provided no SSID Level Firewall rules have been created that conflict.

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
In response to Mloraditch
cam-cart
Just browsing
a week ago
a week ago

Hi, there is no rules configured to block traffic between those vlans, indeed I can access locally (not vpn) to the other vlans without problems from the same vlan. The issue relies only in the teleworker vpn where I can't reach other vlans except the one configured in the ssid.

0 Kudos
In response to cam-cart
Mloraditch
Kind of a big deal
a week ago
a week ago

There is something about your configuration we are missing.

 

You posted a picture of an ssid on an MR access point.

 

what exactly does your teleworker have at their location? A Z series? An MR? Both? How are they connecting to whatever device it is?

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
0 Kudos
In response to Mloraditch
cam-cart
Just browsing
a week ago
a week ago

The device is an MR36 AP, we would like to take advantage of the tunnel it creates in the teleworker option, as there is a small team in that place. The thing is they can't access other resources besides the ones located in the vlan selected. So the AP acts as the only point of connection between users and MX in headquarters.

camcart_0-1749486107125.png

 

0 Kudos
In response to cam-cart
PhilipDAth
Kind of a big deal
Kind of a big deal
Monday
Monday

Try changing that site to run in full tunnel mode.

0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
a week ago
a week ago

 

Search for "Dashboard Configuration" in this guide.

https://documentation.meraki.com/MX/Deployment_Guides/VPN_Concentrator_Deployment_Guide

 

Add the VLANs under "Local Networks" in the "VPN Settings" section.

 

PhilipDAth_2-1749418378962.png

 

 

 

In response to PhilipDAth
cam-cart
Just browsing
a week ago
a week ago

Hi, it would work if the connection is between MXs , but we are using an access point in the other side.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
© 2025 Cisco Systems, Inc.