Cisco Meraki MX security appliances support the OSPF routing protocol to advertise remote VPN subnets to neighboring layer 3 devices. This feature is useful in topologies where a large number of VPN subnets makes configuring static routes impractical.
This article outlines the prerequisites and configuration necessary for OSPF on the MX platform.
OSPF is only supported when the MX is in passthrough mode. This can be set under Security Appliance > Configure > Addressing & VLANs.
Please note that the MX will only advertise Meraki Auto VPN routes with OSPF. The MX will need static routes configured for any other local subnets.
To configure OSPF on the MX, navigate to Security Appliance > Configure > Site-to-site VPN > OSPF.
Enabling Advertise Remote routes will provide additional configuration options:
To confirm that the MX is sending OSPF updates, a packet capture can be taken on the WAN interface of the MX. This will show the MX sending updates to other OSPF enabled devices. An in depth reference of an OSPF adjacency being formed can be found here.