Through the use of the Meraki Dashboard, MX devices can also be integrated with Cisco Umbrella to utilize predefined Umbrella content filtering and security policies. Utilizing a simple API-based integration, this feature creates a secure IPsec tunnel between the MX and Umbrella Secure Internet Gateway (SIG) endpoint to allow all Internet-bound traffic from network clients to be forwarded through the Umbrella SIG gateway for inspection and filtering before reaching the final destination. This allows multiple branch sites to be quickly and easily configured to utilize Umbrella security policies within the Meraki Auto VPN/SD-WAN fabric, reducing the need for per-site security configurations within the Dashboard and allowing for more seamless integration with an existing Umbrella security solution.
For more information about Cisco Umbrella integration, including specific configuration steps, detailed operation, and licensing requirements, visit https://documentation.meraki.com and view the article “Automatically Integrating Cisco Umbrella with Meraki Networks.”
Note
The “Additional Reading” section at the end of this chapter provides the full URL for every article that is cross-referenced in this chapter. Alternatively, you can search for the article title at https://documentation.meraki.com to locate it.
Pro Tip
It is best to stop “bad” traffic closest to the source. Cisco Umbrella integration also exists for MR APs to help mitigate risk closer to the clients, saving processing power along the path.