Scenario is Z3 at home (10.10.0.0), plugged into home router (192.168.1.1/24). AutoVPN has default route enabled so all traffic is tunneled back to data center for proper inspection/internet egress.
Is there a way to add the 192.168.1.1/24 route to a tunnel exception so home personal printers may be used from the Meraki subnet (10.10.0.0)? Essentially, a static route with next hop being WAN uplink.
If you remove default route for the Z3 VPN to the DC hub it works perfect with home printer, but then *all* internet traffic egresses locally from home ISP, not via the DC.
As soon as you enable default route on the VPN all internet traffic goes to the DC and you lose home printing.
On the whole no ...
But it is available in a public beta release of the code. Can't remember which version. You would also need to raise a support ticket to have support add the exception.
Plug the printers into the "home router", not the Z3, if you don't want the boss seeing your "holiday snaps".
I like to keep thing really simple - keep the corporate stuff apart from the "home network". Having an installed home router ahead of the Z3, it is a no brainer to attach home network devices to the "home router" and reserve the Z3 for corporate use. If you have a laptop that you use personally as well as for corporate matters, it is simple enough to switch between WIFi networks. If printers are shared between corporate and home, then with any luck the printers in question have email functionality available, so you just email what is to be printed to the printer.
It is like the separation of church and state.