I've done this a couple of times, and while it's not really the most optimal way of doing it, it's certainly a possibility.

There are some caveats with using Meraki Switches as WAN breakout switches.

One aspect that you need to have in mind is that Meraki needs to have an IP address on it's Management. And that's whether you're using it on the LAN or in a WAN breakout setup. So you need a connecting from the WAN switch and back to the LAN side of MX, for it to obtain an address for it's Management.

In terms of when you configure the switches, just remember, that it is imperative that the LAN side VLANs are not mixed with the WAN side i.e. do not trunk the WAN side VLANs into your LAN side.

Another issue is that fact that during maintenance windows where you perform firmware upgrades, you'll experience that your entire Meraki organization will go offline at least twice; once during MX upgrade, and second during MS upgrades. The WAN breakout switches will upgrade at the same time as the rest for your switching infrastructure, unless you define upgrade groups for staged upgrades.

And in the end, you can never guarantee that something doesn't go wrong during Firmware upgrades, that end up causing a Loop between you LAN side and WAN side.

The third caveat is that, your Network Clients page will also contain publicly routed addresses, and you'll end up seeing some odd statistics in the Applications details.

All this being said, as long as you are aware of what you are doing, this is certainly a possible setup. Like I said, I've done it a couple times, but mainly out of necessity, rather than opportunity.

But these are just my two cents.. 🙂

We use small 5 port Cisco unmanaged Gigabit switches for the ISP splitting.  I prefer not to have managed (and therefore more hackable) switches outside of the perimeter.  They are cheap as chips, perform perfectly well and have been very reliable.  They are also pretty much always in stock!

This is a bit of a rabbit trail from the OP, hopefully not too far off topic.  

@Ryan_Miles I've been following your slide decks that you provided above (thanks for sharing those by the way) for a new MX HA cluster setup I'm building out with two ISP connections.  I appreciate you simplifying a somewhat complex setup.

 I'm using two 8 port ms120's for the WAN breakout switches going to two MX85's and behind those are two 24 port MS120's.  I bought all of this thinking I already knew how to get it going, not realizing how much detailed configuration was involved.  It's been a good learning experience. 

I'm writing because I've got a loop of some kind that I have not resolved yet.  I figured out the wan breakout config, that and the firewalls seem to be working fine.  Where I'm getting stuck is on the switch side, setting up both 120's behind the MX's.  I'm using the recommended layout from MX Warm Spare guide.  So a link from each MX to each switch for four total and then one link between the two switches. 

In your WAN and LAN failure scenarios slide deck you say all the interswitch and switch to MX connections should be 'trunks, allow all VLAN's, and a native VLAN'.  Here are a few things that are confusing me about this.

1. What should the spanning tree settings (and by that I mean RSTP, STP guard, and UDLD) be for the trunk ports and are the ones to the MX's different at all from the inter switch link?  
2. Also, you said on the MX end of these uplink ports there are no settings to change, that it's all handled by the L2 of the switch, but I'm reading over on this post (https://community.meraki.com/t5/Switching/STP-guard-setup-best-practices/m-p/31165) about all the ST stuff and turning off Drop Untagged Traffic on the MX to avoid loops and it seems like I need to have some of those settings on there.  I can't tell if I'm just not grasping the details here or if I'm convoluting two unrelated things.

Thanks again Ryan for the slide decks and I'd be happy to hear from anyone on how these links should be configured to avoid loops.

Thanks All (in advance)