Meraki

Community

Using a specific IP address for internal to external traffic

Solved
CedricMX
Getting noticed
yesterday
yesterday

Using a specific IP address for internal to external traffic

Hello Team,

 

I am using a Mx 75 firewall on a location.

The ISP provide to us a /29 subnet so i can use 4 different public IP address.

 

I would like to know if it possible with Meraki to do this configuration : 

- For any port From a local device 1 to internet use the public IP number 1

- For any port From a local device 2 to internet use the public IP number 2

 

I know it was possible with other firewall solution.

 

Thanks for your help.

0 Kudos
1 Accepted Solution
In response to PhilipDAth
CedricMX
Getting noticed
yesterday
yesterday

PhilipDAth

 

 Thanks very much it is working.

View solution in original post

8 Replies 8
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

Meraki MX does not support policy-based outbound NAT. So it is not possible.
I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
In response to alemabrahao
CedricMX
Getting noticed
yesterday
yesterday

From what i understand Meraki support inbound NAT only (from external to internal) ?

Is that correct ?

Thanks

0 Kudos
In response to CedricMX
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

Yes, this is correct.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
yesterday
yesterday

A 1:1 static NAT mapping will achieve this.

https://documentation.meraki.com/SASE_and_SD-WAN/MX/Design_and_Configure/Configuration_Guides/NAT_an...

 

0 Kudos
In response to PhilipDAth
CedricMX
Getting noticed
yesterday
yesterday

PhilipDAth

 

 Thanks very much it is working.

In response to PhilipDAth
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

I was confused because the question was about inside-out NAT and outside-in 1:1 NAT.

 

They are not the same thing.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
PhilipDAth
Kind of a big deal
Kind of a big deal
yesterday
yesterday

If you define a 1:1 NAT for inbound access - the MX also uses that same 1:1 NAT for all outbound access as well.

 

It is a "special exception".  I'm not sure it is even documented.

0 Kudos
In response to PhilipDAth
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

That's called a makeshift solution. 🤣

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.