Meraki

Community

LAN NAT

RYANSCH
Just browsing
‎Mar 30 2022 7:54 AM
‎Mar 30 2022 7:54 AM

LAN NAT

I know this has been brought up in the past but haven't seen it mentioned in a few years so hoping there's been some development.

 

I have:

WAN1

WAN2

DMZ1 (VLAN public address)

DMZ2 (VLAN public address)

VLAN

VLAN

VLAN...

 

Can I translate an address from LAN to DMZ VLANs similar to how you could on an ASA?

 

Thanks!

 

Ryan

0 Kudos
7 Replies 7
alemabrahao
Kind of a big deal
‎Mar 30 2022 7:59 AM
‎Mar 30 2022 7:59 AM

is the DMZ network a network directly connected to the MX?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
RYANSCH
Just browsing
‎Mar 30 2022 8:01 AM
‎Mar 30 2022 8:01 AM

it can be

0 Kudos
In response to RYANSCH
alemabrahao
Kind of a big deal
‎Mar 30 2022 8:14 AM
‎Mar 30 2022 8:14 AM

In my experience, you can only NAT from outside to inside LAN and Site-to-site VPN Translation

 

https://documentation.meraki.com/MX/NAT_and_Port_Forwarding/Port_Forwarding_and_NAT_Rules_on_the_MX

 

https://documentation.meraki.com/MX/Site-to-site_VPN/Using_Site-to-site_VPN_Translation

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
In response to alemabrahao
RYANSCH
Just browsing
‎Mar 30 2022 11:00 AM
‎Mar 30 2022 11:00 AM

Yeah that's all known.  Need a way to get other subnets to NAT not on WAN interfaces.

0 Kudos
In response to RYANSCH
alemabrahao
Kind of a big deal
‎Mar 30 2022 11:02 AM
‎Mar 30 2022 11:02 AM

With Meraki It's not possible. 😕

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
alemabrahao
Kind of a big deal
‎Mar 30 2022 11:09 AM
‎Mar 30 2022 11:09 AM

But, maybe you can request It to Meraki support:

 

https://community.meraki.com/t5/Security-SD-WAN/Source-NAT-for-VPN-traffic-Branch-office/m-p/60789

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
MK2
Building a reputation
‎Apr 18 2023 1:55 AM
‎Apr 18 2023 1:55 AM

Any news here? I'am currently on a POC and it seems that this is the show-stopper for the Meraki solution.
I simply need a 1-to-many NAT from a LAN to a LAN or VLAN to VLAN.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.