I have configured my MX100 on a new network for an installation where we are going to migrate from an existing network and configured a connection between the new and the old networks.
However, with the way this is currently configured, all network traffic from the old network is appearing on the new network. Ideally we need these to be kept separate, so all devices connected on the new network have the ability to speak to hosts on the old network, but broadcast traffic and general network comms from the old network are not present on the new one.
The current setup has VLANs enabled and subnets added for the old (172.31.104.0/22 VLAN 1) and the new network (192.168.92.0/22 VLAN 101) and the old network is configured with an MX IP of a free address in that range (172.31.104.10).
The routing of the old network directs all traffic to 192.168.92.0/22 to the MX IP configured on the old LAN.
Port 2 is connected directly to the Old LAN and configured with VLAN 1 on the per-port settings.
Port 3 is connected directly to the switches for the new network with VLAN 101 on the per port settings.
This allows connection between servers in both the old and new networks but also undesired network broadcast traffic from the old network across the new switches (visible in the Meraki logging and when using WireShark connected to the new switches).
I think I am just missing something obvious with regards to locking down the VLANs available on the switch ports? Or is there anything else I should be considering?
Thanks in advance.
