Meraki

SebastienD

Hello,

We plan to replace our MX84 with a MX85 in order to get 3 WAN.

The third WAN will be a MERAKI MG52 router.

Documentation indicate this:

MultiWAN Backup Uplink - Cisco Meraki Documentation

Canveats

7 - Not all NAT features are supported such as Port Forwards, 1:1 NAT and 1:Many NAT

Is someone test Port Forwarding on WAN3 because we need to access internal ressources from the Internet ?

Regards.

RWelch

The MX85 would likely have a reduced capable WAN 3 usually treated as a failover-only (not true load balancing), limited monitoring and performance data. Some of the WAN specific features might be missing.

Your post indicates you need these things whereas the WAN 3 in models below the MX105 are less likely to have the full features (was the point I was attempting to make - by design it's a backup link vs a full feature WAN capable as WAN 1 and WAN 2 are).

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.

View solution in original post

RWelch

The third link mimics the failover behavior of the embedded cellular feature on supported MX(C) Appliances which means the third link remains in standby mode until both primary and secondary uplinks are down.

The third link uses the same shared firewall rules which govern WAN 1 and WAN 2.

MultiWAN Backup Uplink

For your testing, you'd likely need to remove links to WAN 1 and 2 to test the access to internal resources via WAN 3.

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.

SebastienD

Thanks for your quick answer.
If I understand your answser, when WAN1 and WAN2 are down, WAN3 will use the port forwarding rules already configured.

RWelch

The MX85 would likely have a reduced capable WAN 3 usually treated as a failover-only (not true load balancing), limited monitoring and performance data. Some of the WAN specific features might be missing.

Your post indicates you need these things whereas the WAN 3 in models below the MX105 are less likely to have the full features (was the point I was attempting to make - by design it's a backup link vs a full feature WAN capable as WAN 1 and WAN 2 are).

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.

SebastienD

I understand that is a backup link and not a full WAN.

I just want to know if someone has already tested on MX85 that WAN3 will continue to do port forwarding if WAN1 and WAN2 are down.

Documentation is not clear about that.

alemabrahao

Caveats

On the MX75 - The Third physical port is the designated backup port. Physical ports 1 & 2 become designated WAN 1 and WAN 2 ports.
On the MX85, MX95 & MX105 - The Fourth physical port is the designated backup port. Physical ports 1 & 2 become designated WAN 1 and WAN 2 ports.
On the MX85, MX95 & MX105 - the Third physical port is disabled and unusable once MultiWAN is enabled
The designated backup port cannot be changed to a different physical port
SFP modules (fiber or copper) are required for physical ports 1 & 2
IPv6 is not supported on the Backup WAN uplink
Not all NAT features are supported such as Port Forwards, 1:1 NAT and 1:Many NAT

MultiWAN Backup Uplink - Cisco Meraki Documentation

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

SebastienD

Thanks for your reply.

I will wait to receive the equipment to try by myself.

Meraki

Community

MX85 MultiWAN and port forwarding

MX85 MultiWAN and port forwarding

Caveats