MX in Passthrough

CashG
Getting noticed

MX in Passthrough

I have a MX 84 in Passthrough mode. I'm using a FortiGate 60E to do all the routing for the LAN. So it goes Internet  -> FortiGate -> MX 84 -> LAN. I have the MX with static IP on the same subnet as the LAN and going from the WAN Port of the MX to the FortiGate and then I'm plugged into a LAN port of the MX. The internet works, the Meraki dashboard says it has a VPN connection but I can't make any connections to the branch locations. There is nothing complicated at the branch locations, they are connected directly to a MX in routed mode. Is there anything special I need to do with the FortiGate to allow the VPN traffic? 

3 REPLIES 3
ww
Kind of a big deal
Kind of a big deal

did you add routes on the FortiGate  for the vpn subnets? with next hop the mx ip

CashG
Getting noticed

No, there are 10 branch locations. Is there any documentation on what needs to be add? I couldn't seem to find any.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels