My MX250 appliances are setup to use a publicly routable network that Comcast provided. I have set this up as VLAN 3001 with a 220.127.116.11/27 network. If I were to just place the MX appliances in the VLAN, it would show that my WAN connection is up in the Meraki Dashboard. The problem I am running into is that we need to place an IPS pass-through appliance between the Comcast IPS and the MX appliances. When we do this, I can still ping the IP addresses successfully of the MX appliances, but the Dashboard is saying the WAN is failing.
Here is the topology layout:
Comcast's network provides a 18.104.22.168/30 network.
Comcast has 22.214.171.124 as the gateway.
I created a L3 interface (VLAN 3000) on our edge switch with an IP off 126.96.36.199. This creates a default route similar to what is seen in the links above.
Comcast provides a routable IP subnet 188.8.131.52/27.
I then created a 2nd L3 interface (VLAN 3001) with IP address 184.108.40.206.
The External IPS port is connected to the switch and is setup on VLAN 3001 with an IP of 220.127.116.11.
The Internal IPS port is connected to the switch and is setup on VLAN 3002.
The MX appliances have their WAN ports connected to the switch and are in VLAN 3002.
I can ping all appliances and devices within the 18.104.22.168/27 network, but the dashboard is saying it is failing.
If I move the the MX WAN connections to VLAN 3001, the dashboard says it is active.
Has anyone ran into this issue and does anyone have a solution. It would be greatly appreciated.