Meraki

Schultz · ‎Mar 23 2023

I had the same problem and swapping the primary and secondary MX has solved the problem. Thank you!

PhilipDAth · ‎Jan 2 2020

You may be able to just configure an extra VLAN on the MX67 and use it to do the routing of the new subnet. https://documentation.meraki.com/MX/Networks_and_Routing/Configuring_VLANs_on_the_MX_Security_Appliance

Halil · ‎Dec 29 2019

Hello form members, the solution for this problem was to swap primary MX with the secondary over Meraki Dashboard. I cannot relate any reason to the issue but after we did this everything worked fine. Seems like a bug.

MeredithW · ‎Dec 13 2019

Thanks for a fun challenge, @BlakeRichardson! Congrats to our randomly selected winners, @SeaTec and @r_timmons!

Nash · ‎Dec 6 2019

@Halil wrote: Hello Nash, but if we disable NAT Traversal we will need to set up Port-Forwarding to our Applience, true? Because I could disable NAT Traversal for the VPN Tunnels but I don´t because of this comment on the Dashboard: "Remote peers contact the security appliance using a public IP and port that you specify. Use this if your security appliance is behind another NAT and "Automatic" traversal does not work." You can disable NAT-T freely when your device is at the edge of your network, wearing the public IP on its outside/WAN interface. If you had e.g. a router between your FW and the public IP, you'd already need to forward traffic on 500/4500 from that router to your fw. Otherwise your router would deny the incoming traffic.

Meraki

Community

About Halil

Halil

Community Record

Badges

Re: Urgent: VPN Registry: Disconnected.

Re: Lancom 1781va Router to Meraki

Re: MX87 Connection issues

Re: [CONTEST CLOSED] A Guest Community Challenge!

Re: URGENT: MX67 Non-Meraki-VPN limit encryption domains

Re: Urgent: VPN Registry: Disconnected.

Re: MX87 Connection issues

Re: A Guest Community Challenge!

Re: Urgent: VPN Registry: Disconnected.

Re: URGENT: MX67 Non-Meraki-VPN limit encryption domains