Meraki

Vishal07 · ‎Aug 8 2025

Hi All,

Have Mx configure in warmspare where im having public ip pool 1.1.1.0/29. Here i will configure 1.1.1.1 at Router end and 1.1.1.2, 1.1.1.3 and 1.1.1.4 for each MX and virtual ip. Need to know can i use 1.1.1.5 and 1.1.1.6 for vpn configuration and DNat.

Note: 1.1.1.5 and 1.1.1.6 will not configure at any interface of MX.

jimmyt234 · ‎Aug 8 2025

You can certainly use 1.1.1.5 and 1.1.1.6 for DNAT, but any VPNs (eg. Non-Meraki or Client to the MX) would use the virtual IP.

alemabrahao · ‎Aug 8 2025

Hi, yes you can do that. Refer the documentation.

https://documentation.meraki.com/MX/NAT_and_Port_Forwarding/Port_Forwarding_and_NAT_Rules_on_the_MX#...

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

rhbirkelund · ‎Aug 11 2025

How are you assigning the 1.1.1.0/29 pool? Is it something that you have picked yourself?

1.1.1.1 is a public-ly routed subnet, so I would very much avoid using that on the WAN interfaces of the MX. Considering also that when Meraki Devices go offline and loose their Uplink Connectivity, they tend to be arp'ing a 1.1.1.1 address.

If you do not have a public routed subnet assigned that you can use, try to stick to RFC1918 addresses.

LinkedIn ::: https://blog.rhbirkelund.dk/

Like what you see? - Give a Kudo ## Did it answer your question? - Mark it as a Solution 🙂

All code examples are provided as is. Responsibility for Code execution lies solely your own.

Meraki

Community

MX public ip pool query

MX public ip pool query