Meraki

Colin-D

As the title says, can a LAN Port that has been toggled to be a WAN port terminate a vpn to another site?

kYutobi

Yes, a LAN port toggled to act as a WAN port can terminate a VPN to another site, as long as it’s properly configured. It needs an IP address that the remote site can reach, and the device must support VPNs on that port. Just make sure routing, firewall rules, and the VPN setup align with the toggled port’s role.

Enthusiast

Colin-D

Thanks, do you know how to find determine if the device would support VPNs on the port? I'm working with an MX105. found the documentation about toggling the port from LAN to WAN pretty easily, but couldn't find more detailed info about connecting a site to site vpn on it.

Ryan_Miles

Converting a LAN port to a WAN port is only applicable on a few of the smaller MX models like MX64/67.

https://documentation.meraki.com/MX/MX_Installation_Guides/MX64_Installation_Guide#Setting_up_second...

https://documentation.meraki.com/MX/MX_Installation_Guides/MX67%2F%2FMX68_Installation_Guide#Setting...

Models like the MX105 have 4 dedicated WAN ports (2 SFP, 2 RJ45). You can only use 2 WAN ports total be it 2 SFP, 2 RJ45, 1 of each.

Some models supports a third backup WAN link.

https://documentation.meraki.com/MX/MultiWAN_Backup_Uplink

Ryan

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.

GIdenJoe

An IPsec or client VPN will always terminate on your primary WAN port.
AutoVPN's can be made simultaneously on WAN1 and WAN2.

However you don't have the ability to add another port to terminate VPN's separately.

Meraki

Community

Can you terminate a site to site VPN on a lan port that has been toggled to be a WAN port?

Can you terminate a site to site VPN on a lan port that has been toggled to be a WAN port?