Forward Traffic from Public IP to another Site MX

miga1
New here

Forward Traffic from Public IP to another Site MX

Hello Everyone,

 

I am asking myself if the following is possible:

 

Currently we have the following Setup:

Site A: MX84 connected via  165.123.123.86

Site A got multiple Public IPs: 165.123.123.80/28

Site B: MX64 connected via Public 43.123.123.45

Site B: Local Server on 192.168.0.2

Site A and B are connected via Hub Site2Site VPN Tunnel.

 

Now my question: is it possible to forward a public IP address from Site A(eg. 165.123.123.84) to the Server on Site B?

And if yes how can this be achieved ? 

Thank you so much!

2 Replies 2
RaphaelL
Kind of a big deal
Kind of a big deal

Directly from Meraki ? I don't think so.

With a loadbalancer or reverse proxy ? Yes. 

Is it a good design ? Probably not.

 

1:1 NAT or PortForwarding on MX84 from Site A to the listening IP of the LB  / Reverse proxy. The LB has a pool member that is 192.168.0.2 and the flow will be redirected through the AutoVPN tunnel. 

 

Client -> 165.123.123.80/28 ( Site A )-> Listening IP (Routed on Site A) -> 192.168.0.2 ( Site B )

 

 

PhilipDAth
Kind of a big deal
Kind of a big deal

Understand that when you NAT inbound traffic to a device the return traffic has to go back out the same Internet circuit.

 

To make this work, you would have to configure site B as a full tunnel VPN, so all of its Internet traffic went out the Internet circuit on site A.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels