Meraki

Community

MX68 LAN static route or default route.

Solved
dhayes89
Here to help
‎May 25 2021 8:06 AM
‎May 25 2021 8:06 AM

MX68 LAN static route or default route.

MX64 Hub not using static route 0.0.0.0/0 to send all traffic from spoke to internal network. The spoke tracert tool for a public IP address 8.8.8.8 , the hub recieves the traffic vie the vpn tunnel but sends the traffic to its WAN interface instead of using the static route for the internal network.

 

dhayes89_0-1621954858125.png

 

dhayes89_1-1621954932931.pngdhayes89_2-1621954970546.pngdhayes89_3-1621955029937.png

 Spoke tracert

dhayes89_4-1621955159345.png

 

0 Kudos
1 Accepted Solution
In response to dhayes89
ww
Kind of a big deal
Kind of a big deal
‎May 25 2021 9:04 AM
‎May 25 2021 9:04 AM

Only if you first select the default route at the hub. To participate  in vpn. Then the spokes learn that default route in the vpn

 

So if you select that static 0.0.0.0 route at the hub. Then set it, in vpn

View solution in original post

8 Replies 8
ww
Kind of a big deal
Kind of a big deal
‎May 25 2021 8:21 AM
‎May 25 2021 8:21 AM

Do you advertise the static default route at you hub into vpn?

 

If you do,

can you unselect the "Default route" checkbox at the spoke vpn settings.

 

 

 

 

0 Kudos
In response to ww
dhayes89
Here to help
‎May 25 2021 8:31 AM
‎May 25 2021 8:31 AM

No,the Spoke is using the HUB as default route.  The traffic makes it to the HUB.

dhayes89_0-1621956600699.png

 

0 Kudos
In response to dhayes89
ww
Kind of a big deal
Kind of a big deal
‎May 25 2021 8:36 AM
‎May 25 2021 8:36 AM

So if you do select to select the  static default to use vpn and remove the checkbox it should work

0 Kudos
In response to ww
dhayes89
Here to help
‎May 25 2021 8:53 AM
‎May 25 2021 8:53 AM

Are you saying un-select the Default route for site to site VPN

 

dhayes89_1-1621957863404.png

 

Then advertise the static route on the VPN, instead of this.

dhayes89_0-1621957775906.png

 

0 Kudos
In response to dhayes89
ww
Kind of a big deal
Kind of a big deal
‎May 25 2021 9:04 AM
‎May 25 2021 9:04 AM

Only if you first select the default route at the hub. To participate  in vpn. Then the spokes learn that default route in the vpn

 

So if you select that static 0.0.0.0 route at the hub. Then set it, in vpn

In response to ww
dhayes89
Here to help
‎May 25 2021 9:16 AM
‎May 25 2021 9:16 AM

Ok, will try that later today after the office is closed.

0 Kudos
In response to dhayes89
dhayes89
Here to help
‎May 25 2021 1:35 PM
‎May 25 2021 1:35 PM

Thanks , that works.

dhayes89_0-1621974763530.pngdhayes89_1-1621974815329.png

HUB

dhayes89_2-1621974924312.png

 

0 Kudos
In response to ww
dhayes89
Here to help
‎May 25 2021 1:36 PM
‎May 25 2021 1:36 PM

Thanks. 😁

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.