Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

MX250 disconnects WAN after VLAN enable

Solved
mx250
New here
‎Sep 30 2020 8:20 AM
‎Sep 30 2020 8:20 AM

MX250 disconnects WAN after VLAN enable

Hello togehter,

we bought a new MX250 for our new branch office and connected it via WAN1 to our ISP.

We configured via the local config page WAN1 with the following settings:
VLAN tagging: Use VLAN tagging
VLAN ID: 7
Connection type: PPPoE
Authentication: Use authentication
Username: 0025909*******95511*****************@t-online.de
Password: *********
IP assignment: Dynamic

After a couple of minutes the MX250 is successfully online.

 

So far so good. Now we want to use VLANs. So we go to the dashboard and enable VLAN and leave it with the default configuration. After the config applies, the MX250 appliance is disconnected from the internet and we have absolutely no idea whats wrong.

If we disable VLAN and use "Singele network", the internet connection comes up again.

 

What we also tried:

* beta firmware update to version 15.36, without any change.

* contact meraki support, which was quite useless.

 

Maybe someone can help us to reach out that problem.

 

Regards,

Martin

0 Kudos
Subscribe
1 Accepted Solution
KarstenI
Kind of a big deal
Kind of a big deal
‎Sep 30 2020 8:31 AM
‎Sep 30 2020 8:31 AM

Sadly, this is a known bug. From the release-notes:

 

 

  • MX250 and MX450 appliances will not apply the configured VLAN ID to traffic transmitted on their WAN interfaces if VLANs are also enabled on the LAN for other downstream clients and traffic.

You probably have a DSL-Modem in front of the MX. Disable VLAN-tagging on the MX and let the DSL-Modem do the job. I personally prefer the Draytek Vigor for this.

 

View solution in original post

Subscribe
4 Replies 4
KarstenI
Kind of a big deal
Kind of a big deal
‎Sep 30 2020 8:31 AM
‎Sep 30 2020 8:31 AM

Sadly, this is a known bug. From the release-notes:

 

 

  • MX250 and MX450 appliances will not apply the configured VLAN ID to traffic transmitted on their WAN interfaces if VLANs are also enabled on the LAN for other downstream clients and traffic.

You probably have a DSL-Modem in front of the MX. Disable VLAN-tagging on the MX and let the DSL-Modem do the job. I personally prefer the Draytek Vigor for this.

 

Subscribe
In response to KarstenI
mx250
New here
‎Sep 30 2020 11:02 PM
‎Sep 30 2020 11:02 PM

Ok thanks!

The connection is already a L2 connection. I will try to untag the VLAN on the switch.

0 Kudos
Subscribe
In response to mx250
swifty
Getting noticed
‎Nov 3 2020 9:35 AM
‎Nov 3 2020 9:35 AM

We share your pain !

In our instance we decided to get the carrier to strip VLAN tagging on the cct, rather than go with beta code.

But if you like living dangerously there is a fix starting in 15.37

https://community.meraki.com/t5/Security-SD-WAN/New-15-37-firmware-fixes-MX250-450-WAN-VLAN-issue/m-...

 

** N.B. **

Security appliance firmware versions MX 15.37 changelog

IMPORTANT NOTICE

  • This is a beta version for the next major MX release. Due to this, we recommend taking additional caution before upgrading production appliances. Where applicable, MX 14 releases will provide a more stable upgrade alternative.

 

😱 😁💣

0 Kudos
Subscribe
In response to swifty
cmr
Kind of a big deal
Kind of a big deal
‎Nov 3 2020 10:57 AM
‎Nov 3 2020 10:57 AM

We have been running firmware 15.x for over a year now and our MX250 HA pair are currently on 15.37.  We haven't seen any service affecting issues and you can always roll back.

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.