Meraki

mrpackethead_ · ‎Jun 11 2025

Hi, I have ~150 sites, of varying sizes, currnetly running ipv4 only. They are connected to a variety of ISP's. I have largely compelted implemetning Ipv6 in my public cloud, and i have an allocation of Ipv6 address's from APNIC, that i can use and not be reliant on upstream ISP's to provide them. I may or may not be able to have the upstream ISP listen to routing, for example some of my sites are Starlink connected, they wont' set up bgp for me, its use their address pool or nothing.

(a) Can i run ipv6 dual stack on vlans that are in the vpn. I'd address the ipv6 address' with my own address space.
(b) If i want to have local internet access from the sites, rather than centralised, can i use nat to use the service providers addressing?

(c) what else should i be thinking about?

RWelch · ‎Jun 11 2025

IPv6 Support on MX Security & SD-WAN Platforms - VPN maybe it'll help.

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.

mrpackethead_

"

IPv6 full-tunnel support is not implemented at this time due to technical limitations. Hence, disable VPN mode for IPv6 enabled VLANs or disable IPv6 for VLANs which you wish to use IPv4 full-tunnel."

What does "full-tunnel' mean?

PhilipDAth

Yes, you can ... but it will probably be easier to use your provider-allocated IPv6 address space, and let it be redistributed into AutoVPN from the VLANs it is assigned to. Don't assign a static IPv6 address to any device.

>If i want to have local internet access from the sites, rather than centralised, can i use nat to use the service providers addressing?

Not for IPv6.

Meraki

Community

Ipv6 / Dual Stack Strategy for Remote Sites.

Ipv6 / Dual Stack Strategy for Remote Sites.