I have 2 links in my MX Firewall, while the primary link is a Internet Conenction which is used only for Management, second link is a private MPLS link from Service provider which is providing connectivity our other sites. I hav requirement where one of my devices in one of my remote site needs to establish an IPSEC tunnel with my MX over the Private IP. In this case what would be my Meraki peer IP, and how can I achieve this design?
Also I have a requirement where my Wireless Concentrate MX is sitting in my DC which is having single uplink, in case of wireless SSID traffic flow, does it go to Internet and then come back to MX over it's public IP?
If the MPLS network plugs into a WAN/Internet port on the MX then it will be the IP address on that port.
If it is a VLAN interface then this probably wont work. You could trying giving the WAN IP on the MX you use for management, but I'm thinking this probably wont work. If that doesn't work, then this is not a workable solution.
The traffic actual VPN data flow depends on your infra, the sites are connected via MPLS then it routes the traffic through it. However, the VPN establishment and management rely Dashboard connectivity.
hope this helps.
Please hit kudos if you found this post helpful and/or click "accept as solution" if this solved your problem.