Meraki

Community

MX84 IP address assignment and NAT statement

Solved
Ryan5
New here
‎Mar 9 2020 10:06 AM
‎Mar 9 2020 10:06 AM

MX84 IP address assignment and NAT statement

Hello,

 

If I change the routing to not use vlans, so I can assign a IP address, what interface is the LAN config assigning the IP to?

 

Also, if I move my layer 2 networks off my MX84 to a core switch, which is directly connected, I just need to point a static route to it? Do I need to create a source NAT rule, since I will be moving the networks to something not directly connected?

0 Kudos
1 Accepted Solution
cmr
Kind of a big deal
Kind of a big deal
‎Mar 9 2020 10:29 AM
‎Mar 9 2020 10:29 AM

@Ryan5 on an MX you don't assign a LAN IP to a physical interface.  The IPs are assigned to VLAN interfaces and these can be assigned to physical interfacea, when you put an MX in single LAN mode the IP is assigned to the default (only) VLAN and is available on all active physical interfaces.

 

As for the routing, if you have LAN subnets not directly connected then you need to add them as static routes on the MX and point to the next device in the chain.  From that device you need to add a route to say the MXs networks are available through the IP you assign to the LAN.  If your internet access it via the MX then just set a default route from the other device pointing to the LAN IP of the MX.

If my answer solves your problem please click Accept as Solution so others can benefit from it.

View solution in original post

3 Replies 3
cmr
Kind of a big deal
Kind of a big deal
‎Mar 9 2020 10:29 AM
‎Mar 9 2020 10:29 AM

@Ryan5 on an MX you don't assign a LAN IP to a physical interface.  The IPs are assigned to VLAN interfaces and these can be assigned to physical interfacea, when you put an MX in single LAN mode the IP is assigned to the default (only) VLAN and is available on all active physical interfaces.

 

As for the routing, if you have LAN subnets not directly connected then you need to add them as static routes on the MX and point to the next device in the chain.  From that device you need to add a route to say the MXs networks are available through the IP you assign to the LAN.  If your internet access it via the MX then just set a default route from the other device pointing to the LAN IP of the MX.

If my answer solves your problem please click Accept as Solution so others can benefit from it.
In response to cmr
Ryan5
New here
‎Mar 9 2020 10:46 AM
‎Mar 9 2020 10:46 AM

Does the egress traffic out of the MX automatically NAT to the WAN1 IP or do I have to put in a dynamic NAT statement for any network off the core?

0 Kudos
In response to Ryan5
cmr
Kind of a big deal
Kind of a big deal
‎Mar 9 2020 10:52 AM
‎Mar 9 2020 10:52 AM

It will auto NAT any LAN subnets that it knows about, so yes.  You cannot make it use a separate public IP, in the way you can on some other firewalls.

If my answer solves your problem please click Accept as Solution so others can benefit from it.
0 Kudos
Back to the top
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.