LAN NAT

RYANSCH
Just browsing

LAN NAT

I know this has been brought up in the past but haven't seen it mentioned in a few years so hoping there's been some development.

 

I have:

WAN1

WAN2

DMZ1 (VLAN public address)

DMZ2 (VLAN public address)

VLAN

VLAN

VLAN...

 

Can I translate an address from LAN to DMZ VLANs similar to how you could on an ASA?

 

Thanks!

 

Ryan

7 REPLIES 7
alemabrahao
Kind of a big deal
Kind of a big deal

is the DMZ network a network directly connected to the MX?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

it can be

alemabrahao
Kind of a big deal
Kind of a big deal

In my experience, you can only NAT from outside to inside LAN and Site-to-site VPN Translation

 

https://documentation.meraki.com/MX/NAT_and_Port_Forwarding/Port_Forwarding_and_NAT_Rules_on_the_MX

 

https://documentation.meraki.com/MX/Site-to-site_VPN/Using_Site-to-site_VPN_Translation

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

Yeah that's all known.  Need a way to get other subnets to NAT not on WAN interfaces.

alemabrahao
Kind of a big deal
Kind of a big deal

With Meraki It's not possible. 😕

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

But, maybe you can request It to Meraki support:

 

https://community.meraki.com/t5/Security-SD-WAN/Source-NAT-for-VPN-traffic-Branch-office/m-p/60789

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
MK2
Building a reputation

Any news here? I'am currently on a POC and it seems that this is the show-stopper for the Meraki solution.
I simply need a 1-to-many NAT from a LAN to a LAN or VLAN to VLAN.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels