I'm just starting out with a Meraki MX68 and need to route SIP lines from our VoIP provider and data traffic from our internet provider to our internal LAN. Additionally, we have remote users who point their VoIP handsets to our public IP which is port-forwarded to our internal PBX. I see many options on the MX but not sure where to start. Can someone point me in the right direction please?
The SIP line into our building is separate to the internet connection (2 different ports on the NTU), therefore would need to connect to a second MX port. Perhaps my first question should have been "Can the MX68 take two external WANs simultaneously?" I see there are 2 WAN ports, but is this simply for redundancy?
yes that is part of the answer. Do I need to set up two routers, or can I do this with the one MX and use both WAN ports (one for Internet, the other for SIP)? Would I need to set up a static route between and then port forward?
As Ajit indicated, I think you will need to connect the MPLS link, over which the SIP gateway is connected, into a LAN port on the MX - and setup a VLAN on that port, over which the MX can route. One of the two 10.x.x.x /30 addresses will have been allocated for you to use (the other will be on the MPLS router).
You'll want a static route on the MX, pointing the address(es) for the SIP service at the 10.x.x.x/30 of the MPLS router on your VLAN.
You will probably want to add firewall rules to the MX, to control what resources at the site the MPLS link can access (probably just the IP PBX..?) By default the MX allows all inter-VLAN traffic...