We're considering deploying few Meraki MX appliances for our new project, but I need few questions answered to make sure we can use Meraki for our setup.
I understand that we can't create layer 3 interfaces on the MX and assign IP addresses to them, except WAN interfaces. Therefore, the only way to create a DMZ or another network is by using VLANs. So, we just need to create VLANs on MX and MX will take care of inter VLAN routing? Are VLANs assigned to LAN interfaces on the MX? What is the best approach: connect all servers and devices to switches and create trunks between switches and MX or is it better to connect different networks directly to the MX?
We can't have all MX appliances connected to the Internet so I'm worried about management traffic. Can we assign a private IP to the MX for management and use another MX for Internet connectivity?
For example, let’s assume we have 2x MX65: MX1 and MX2.
Both can talk to each other over LAN. MX1 doesn’t have Internet connectivity but MX2 has. To make it work, we would:
Add VLAN10 with MX IP of 192.168.0.1 to MX2.
MX1 IP: 192.168.0.10, default GW: 192.168.0.1, but WAN IP is different, say 10.0.0.1