Meraki

Dudley5526

I have a site-to-site VPN using a MX250 as the hub and a MX64W as a spoke. The MX64W is connected to the network using a CAT6 cable connected to an MS120 switch in the main network closet. Wireless connections on the MX64W receive dhcp addresses from the vlan setup on the MX64W and are able to access the Internet. There are 4 ports on the MX64W and I don't get any connectivity. Where should I look?

RWelch

Dashboard > Security & SD-WAN > Configure > Addressing & VLANs
Then look at Per-Port VLAN Settings for the additional ports on your MX64W

Dudley5526

I changed Port 4 from drop untagged traffic to Native Vlan, and it disappeared. How do I get it back?

This is the other 3

This is the Site-to-Site VPN settings. Are they correct?

I inherited this network. I've had to untangle other setups.

Thank you for your help!

RWelch

The VPN setting for either 192 subnet would need to be enabled on the spoke (MX64W) to be able to go to the HQs hub which is checked as the default route.

what ever you toggle on for VPN enabled (192 subnet) would be set as access vlan on the MX port for clients.

the downlink to the ms120 would typically have a native vlan for management of the switch plus whatever 192 subnets your clients use.

RWelch

The default 192 subnet is likely the native vlan (set trunk downlink to ms120 as that vlan) and in the allowed vlans on the downlink allow both the native vlan and client vlan.