Our company is connected to the headquarter with a site2site vpn using a Meraki MX64. Our MX64 is a spoke, the headquarter is the hub. In the past we used our MX64 in routed mode as the internet gateway with our lan behind it. I configured all the vlans in the MX64. Everything worked and we could reach resources at the headquarter.
I now installed a new router from a different company as a internet gateway and wanted to use the MX64 only for the site2site vpn. So i switched the MX64 to vpn concentrator mode and use only the wan port for connection. The MX64 and Clients are connected to a layer 2 switch which is connected to the new main router.
Router network: 192.168.1.0/24
Router: 192.168.1.1
MX64: 192.168.1.2
Client network: 192.168.10.0/24 (VLAN 10)
The clients need to access the remote network 10.10.0.0/24 at the headquarter.
I added a static route to this network in the new router with the next hop to the MX64 (192.168.1.2).
The VPN connection shows active and green in the Meraki backend.
But i can’t reach any ip at the headquarter. When i use traceroute on our clients for example to the ip 10.10.0.1 it stops at the MX64 (192.168.1.2).
Do i have to put any additional routes in our MX64? Or what i am missing?
Thanks.