I have Client VPN setup on the MX68. For now, I'm using the Meraki cloud authentication for VPN. I have the MX68 directly connected to a Cisco router and to a Juniper SRX.
I'm testing the Meraki, so I'm the only one on the Meraki network (172.17.0.1) now. I'm able to ping the Cisco network (172.16.0.1), and the Juniper network (172.16.64.1). When I connect to the Meraki VPN, I can only ping the Meraki network, why is that?
Second question, I want to use Acitve Directory authentication for the VPN. I followed this guide and I have the AD connected to the MX now. For some reason, when I use AD authentication for VPN, It says the username or password is wrong. I called MX support, and we tried a bunch of variations, but nothing works. MX support said they can see directional traffic on their side, which means MX and AD are communicating. They want me to check my AD logs to see why the authentication fails. Any ideas?
>Why do I need a route to be added to Cisco router for MX VPN range if I already have a route on Cisco to the MX network?
If you have a default route then that is all that is needed. You haven't said what routing you have in place. At a minimum, their needs to existing a routable path for the client VPN subnet (which could be the default route).
I'm not sure why your AD authentication is not working. Another person here recently had an issue with AD authentication as well. I'm wondering if there is some general issue.