Meraki MX site to site VPN where DHCP server is sitting on the other VPN tunnel end

SOLVED
TobyWanKenobi
New here

Meraki MX site to site VPN where DHCP server is sitting on the other VPN tunnel end

Hi All,

We have got a working Meraki MX64 with site to site VPN setup with a non meraki peer.

On the MX we have set: Hub (Mesh) mode

 
We have got several VLANs configured. 
From each of the local VLANs I can connect to the other VPN Tunnel end. (i.e. Ping the DHCP server)
 
However, a device booting in a local VLAN doesn't reach the DHCP server on the other end of the tunnel.
On the LAN interface I was able to see the DHCP request (with the correct IP Helper address on the VPN peer)
Is there something I must enable on the MX to get it working?
 
Thanks Toby
 
1 ACCEPTED SOLUTION
Bruce
Kind of a big deal

I don't think you'll get this working - there are other posts with the same issue on the community. In addition, the Configuring DHCP relay document for the MX, https://documentation.meraki.com/MX/DHCP/Configuring_DHCP_Relay, has this note about half way down: "Note: The DHCP server configured must be in a subnet configured on the MX, including directly-connected VLANs, static routes, and subnets participating in AutoVPN. DHCP servers sitting behind a 3rd-party VPN peer are not supported."

 

EDIT: Also, https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Configuring_DHCP_Serv... states "Note: On an MX, the DHCP server cannot be over a 3rd party VPN peer connection."

View solution in original post

1 REPLY 1
Bruce
Kind of a big deal

I don't think you'll get this working - there are other posts with the same issue on the community. In addition, the Configuring DHCP relay document for the MX, https://documentation.meraki.com/MX/DHCP/Configuring_DHCP_Relay, has this note about half way down: "Note: The DHCP server configured must be in a subnet configured on the MX, including directly-connected VLANs, static routes, and subnets participating in AutoVPN. DHCP servers sitting behind a 3rd-party VPN peer are not supported."

 

EDIT: Also, https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Configuring_DHCP_Serv... states "Note: On an MX, the DHCP server cannot be over a 3rd party VPN peer connection."

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels