This article will guide you to configure VLAN on Meraki MX Security device.
The MX device needs to be configured in Routed mode, VLAN cannot be configured if MX is operating in Passthrough or VPN Concentrator mode. mode. Check it out by going to Security & SD-WAN > Configure > Addressing & VLANs > Deployment Settings > Mode.
1. Enable VLANs:
– By default VLAN is disabled on MX devices. We can enable it at Security & SD-WAN > Configure > Addressing & VLANs > Routing and check Use VLANs.
2. VLAN configuration:
– After VLAN is enabled, you can add VLAN by selecting Add VLANs.
- Name : name of the VLAN.
- Subnet : Enter the IP subnet of the VLAN.
- MX IP : MX VLAN interface IP.
- VLAN ID : number used to identify VLANs.
- Group Policy : Group Policy you want to apply to the VLAN
– You can delete VLAN by checking the box next to VLAN and selecting it DeleteLater Save again.
– Example: Create 3 VLANs
- VLAN 1: 192.168.1.0/24
- VLAN 2: 192.168.2.0/24
- VLAN 3: 192.168.3.0/24
3. Configure VLAN Ports:
– Uplink port connected to the switch will be configured as a trunk port to carry all previously configured VLANs. To change the MX LAN ports configuration, see section Per-port VLAN Settingscheck the box next to the port and select Edit.
- Enabled : Enable or disable port
- Type : Set the port to trunk or access mode. Ports configured in trunk mode can transfer traffic of multiple VLANs, while ports configured in access mode can transfer traffic of one VLAN.
- Native VLAN (trunk mode only): Set up Native VLAN for port.
- Allowed VLANs (trunk mode only): VLANs to which this port will allow traffic to pass.
!!! Thank you for following the article!!!
Xem tiếp...