We are using an MX84 as a VPN concentrator for our remote Z3, Z3C, and other MX's in the field. These remote devices have local subnets configured on them that are currently unreachable from our data center. The remote devices and the MX are up on the dashboard and the VPN between them is functioning as well.
Where I'm getting stuck is what sort of static route i would need to configure on the MX84 so that the remote subnets can communicate with the data center and vice-versa. The MX84 is using an IP address of 10.106.210.10 and the upstream L3 device in the data center that contains our core subnets is 10.106.210.1.
I tried configuring a static route of 0.0.0.0/0 pointing to 10.106.210.1 on the MX but that does not seem to work. We're still in a proof of concept stage and do plan on using OSPF between the MX and our Core but would like to have at least one Z3 functioning using static routes for now. Thanks!
If you are running in VPN concentrator mode you should define the DC subnets under "Security & SD-WAN/Site to Site VPN". Here is an example:
Your DC needs a route for the remote spokes via the VPN concentrator.
Check out this deployment guide:
https://documentation.meraki.com/MX/Deployment_Guides/VPN_Concentrator_Deployment_Guide
Have you configured routes back to the remote networks on the L3 device in the data center?
Even if you configure default route for the remote networks on your MX you still need to tell your data center devices where to send the returning traffic.