Meraki Community

NeriGary · ‎Jul 27 2022

Hi,

We are currently trying to extend our internet connnection to both our router and firewall. Is ithis possible? Planning to connect the isp ckt on port16 configured as access port vlan 309, and then both 14 and 15 will be also configured as access vlan 309 to make way for the connection to our router and fw. Is this possible? Would our router and fw have internet connection?

ww · ‎Jul 27 2022

If you have enough public or private ip address (depending on how your isp router is configured) then yes.

cmr · ‎Jul 28 2022

@NeriGary it will work, but if the MS425-16 is also serving internal traffic then it will mess up your client metrics and it could be a security issue with the LAN and WAN both being on the same switch. If the 425 is only doing this and in a separate network on the dashboard then you should be okay. To minimise the risk make sure you do not create an interface in VLAN 309 on the switch.

NeriGary · ‎Jul 28 2022

Hi cmr,

This is our core switch. Im am not creating any svi for vlan 309. Vlan 309 will just be like transit for the ckt and the router and fw

cmr · ‎Jul 28 2022

@NeriGary then you should be okay from a security point of view, but your client usage data will be messed up as any internet traffic is now likely to be counted twice. I would use a separate unmanaged L2 switch to split the internet connection as that removes the issues completely.

Meraki Community

MS425-16 Layer2 ports

MS425-16 Layer2 ports