Meraki

Community

Problems Attempting to Create a VPN Tunnel Within Another

Solved
Merkie
Comes here often
‎Jun 19 2019 10:08 AM
‎Jun 19 2019 10:08 AM

Problems Attempting to Create a VPN Tunnel Within Another

We have a branch location with a Meraki MX84 with a VPN tunnel back to our Meraki controller in our data center and all works fine. Recently this branch location purchase a Verizon cell phone extender and they have been trying to get this to work for weeks. We consulted with out internal firewall team regarding the obvious possibility of blocked ports. What they said basically is they saw no traffic to and from the VZ device blocked. However I noticed that the VZ device was trying to build a VPN tunnel in between its self and Verizon. Even if that is allowed with some firewalls it proves to be slow and problematic. Im not a security expert by any means so please share your ideas on this.

0 Kudos
1 Accepted Solution
SoCalRacer
Kind of a big deal
‎Jun 19 2019 10:26 AM
‎Jun 19 2019 10:26 AM

Setup a DMZ for this device, cell traffic doesn't need to be traversing through your network, it needs direct internet access. Ideally if your ISP supports it have the device connected to their equipment with its own public IP, that way it never has to touch your equipment.

View solution in original post

1 Reply 1
SoCalRacer
Kind of a big deal
‎Jun 19 2019 10:26 AM
‎Jun 19 2019 10:26 AM

Setup a DMZ for this device, cell traffic doesn't need to be traversing through your network, it needs direct internet access. Ideally if your ISP supports it have the device connected to their equipment with its own public IP, that way it never has to touch your equipment.

Back to the top
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.