Greetings all, I have been brainstorming ways to Maximize my MX64s capability over our current network and would like some community input on how it can be done better. Mind you I inherited the current layout as the Oncoming ISM. Let me lay out the current configuration...
3 Branches and 1 HQ.
HQ: 192.168.0.0 /24
MS-220-48 (Connects to LAN 1 on MX64)
MPLS ATTVPN (Fiber) (Connects to LAN 2 on MX64) 192.168.0.1
ATT ISP (INTERNET): Connects to WAN 1 on MX64
No VPN ACTIVE
MPLS ATTVPN (Connects to MS-225-24) :192.168.50.1
MPLS ATTVPN (Connects to MS-225-24) :192.168.40.1
MPLS ATTVPN (Connects to MS-225-24) :192.168.60.1
As of right now, All traffic flows (phone (Nortel PBX) , Internet, LAN) However I can only fully monitor devices on the 192.168.0.0 /24 but I see that the MX64 is executing all the rules on the MPLS router, which in turns affects clients on the other side, however I cannot see any events for individual clients, just the rules are being enforced on the ATT MPLS router itself. I can also see every IP and MAC of the Branch Clients but cannot set their roles for traffic shaping configurations. Short of putting an MX at every site (Long Term Goal), is there a way to configure the MX64 and the Switches to route the traffic so that I can see all my Clients events as if we are all in the same building on 1 MX64. Let me know if this configuration is way off and can be done better. Thank you in advance for your time and effort!