Meraki

Community

Can you use the same client vpn subnet for 2 vpn settings on the MX?

Announcer
Getting noticed
2 weeks ago
2 weeks ago

Can you use the same client vpn subnet for 2 vpn settings on the MX?

I have Client vpn ipsec setup with a specific subnet (let's say 192.168.33.0).  I am configuring the Ciscon AnyConnect client vpn and am wondering if I can use the same subnet as the other one?  Or Do I have to create a new client vpn subnet that is different from the ipsec subnet?

Labels:
0 Kudos
5 Replies 5
alemabrahao
Kind of a big deal
Kind of a big deal
2 weeks ago
2 weeks ago

You need to create a new subnet.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
In response to alemabrahao
alemabrahao
Kind of a big deal
Kind of a big deal
2 weeks ago
2 weeks ago

Just to be clear, if you try to use the same subnet you will get an error message.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
RWelch
Kind of a big deal
Kind of a big deal
2 weeks ago
2 weeks ago

I don't think it will allow you to use the same subnet, but if it does allow you to, I would encourage you to use a separate subnet to avoid IP address and routing conflicts.

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
Announcer
Getting noticed
2 weeks ago
2 weeks ago

Thanks all, seems like I need to create a new one.

AlexL1
Meraki Employee
Meraki Employee
2 weeks ago
2 weeks ago

Hi Announcer,

 

The MX treats client IPsec VPN and AnyConnect VPN subnets as separate pools and routes client traffic accordingly. They can coexist on the same MX, but their subnets should be distinct to avoid conflicts.

 

In addition, as alemabrahao mentioned, Meraki Dashboard will display an error message:
"There were errors in saving this configuration:

  • The client vpn subnet cannot overlap with the AnyConnect VPN subnet."

 

In this case, I tried to use the same subnet range.

 

 

AlexL1_0-1751754040080.png

 

If you have any further questions, please don't hesitate to contact us.

 

If you found this post helpful, please give it kudos.
If my answer solved your problem, click "accept as solution" so that others can benefit from it.

If you found this post helpful, please give it kudos.
If my answer solved your problem, click "accept as solution" so that others can benefit from it.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.