Meraki

Community

MX250 disconnects WAN after VLAN enable

Solved
mx250
New here
‎Sep 30 2020 8:20 AM
‎Sep 30 2020 8:20 AM

MX250 disconnects WAN after VLAN enable

Hello togehter,

we bought a new MX250 for our new branch office and connected it via WAN1 to our ISP.

We configured via the local config page WAN1 with the following settings:
VLAN tagging: Use VLAN tagging
VLAN ID: 7
Connection type: PPPoE
Authentication: Use authentication
Username: 0025909*******95511*****************@t-online.de
Password: *********
IP assignment: Dynamic

After a couple of minutes the MX250 is successfully online.

 

So far so good. Now we want to use VLANs. So we go to the dashboard and enable VLAN and leave it with the default configuration. After the config applies, the MX250 appliance is disconnected from the internet and we have absolutely no idea whats wrong.

If we disable VLAN and use "Singele network", the internet connection comes up again.

 

What we also tried:

* beta firmware update to version 15.36, without any change.

* contact meraki support, which was quite useless.

 

Maybe someone can help us to reach out that problem.

 

Regards,

Martin

0 Kudos
1 Accepted Solution
KarstenI
Kind of a big deal
Kind of a big deal
‎Sep 30 2020 8:31 AM
‎Sep 30 2020 8:31 AM

Sadly, this is a known bug. From the release-notes:

 

 

  • MX250 and MX450 appliances will not apply the configured VLAN ID to traffic transmitted on their WAN interfaces if VLANs are also enabled on the LAN for other downstream clients and traffic.

You probably have a DSL-Modem in front of the MX. Disable VLAN-tagging on the MX and let the DSL-Modem do the job. I personally prefer the Draytek Vigor for this.

 

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

View solution in original post

4 Replies 4
KarstenI
Kind of a big deal
Kind of a big deal
‎Sep 30 2020 8:31 AM
‎Sep 30 2020 8:31 AM

Sadly, this is a known bug. From the release-notes:

 

 

  • MX250 and MX450 appliances will not apply the configured VLAN ID to traffic transmitted on their WAN interfaces if VLANs are also enabled on the LAN for other downstream clients and traffic.

You probably have a DSL-Modem in front of the MX. Disable VLAN-tagging on the MX and let the DSL-Modem do the job. I personally prefer the Draytek Vigor for this.

 

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
In response to KarstenI
mx250
New here
‎Sep 30 2020 11:02 PM
‎Sep 30 2020 11:02 PM

Ok thanks!

The connection is already a L2 connection. I will try to untag the VLAN on the switch.

0 Kudos
In response to mx250
swifty
Getting noticed
‎Nov 3 2020 9:35 AM
‎Nov 3 2020 9:35 AM

We share your pain !

In our instance we decided to get the carrier to strip VLAN tagging on the cct, rather than go with beta code.

But if you like living dangerously there is a fix starting in 15.37

https://community.meraki.com/t5/Security-SD-WAN/New-15-37-firmware-fixes-MX250-450-WAN-VLAN-issue/m-...

 

** N.B. **

Security appliance firmware versions MX 15.37 changelog

IMPORTANT NOTICE

  • This is a beta version for the next major MX release. Due to this, we recommend taking additional caution before upgrading production appliances. Where applicable, MX 14 releases will provide a more stable upgrade alternative.

 

😱 😁💣

0 Kudos
In response to swifty
cmr
Kind of a big deal
Kind of a big deal
‎Nov 3 2020 10:57 AM
‎Nov 3 2020 10:57 AM

We have been running firmware 15.x for over a year now and our MX250 HA pair are currently on 15.37.  We haven't seen any service affecting issues and you can always roll back.

If my answer solves your problem please click Accept as Solution so others can benefit from it.
0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.