Configuring Auto VPN – MX and MG Best Practices – Cisco Meraki
Figure 5-10 shows the Security & SD-WAN > Site-to-Site VPN page of a network configured as an Auto VPN spoke pointing back to two different hub devices, with the primary
Figure 5-10 shows the Security & SD-WAN > Site-to-Site VPN page of a network configured as an Auto VPN spoke pointing back to two different hub devices, with the primary
As briefly discussed earlier in this chapter, Meraki Auto VPN is a proprietary Meraki technology that automates VPN tunnel creation and management by utilizing the power of the Meraki Dashboard
While each of the security features mentioned previously can be configured on a network-wide basis, there are times when certain clients should have more specific policies applied than the network-wide
Meraki has also implemented support for the Cisco TrustSec architecture with a feature called Adaptive Policy. Designed to offer improved management and scalability over more traditional access control methods, Adaptive
When working with an existing environment that utilizes OSPF for routing, it’s important to be aware that Meraki’s MX security appliances, at the time of writing, only support a limited
In addition to the revolutionary Auto VPN solution, Meraki MX security appliances also offer the option for a direct L2TP/IPsec VPN connection for remote clients, referred to as Client VPN.
In addition to the previously discussed security features offered by the MX series, MX devices are also capable of performing L3 routing through a number of different configurations, including basic
Through the use of the Meraki Dashboard, MX devices can also be integrated with Cisco Umbrella to utilize predefined Umbrella content filtering and security policies. Utilizing a simple API-based integration,
Alongside Cisco AMP, you can configure the IDS/IPS feature set for even further security monitoring. When enabled, the IDS/IPS feature set inspects all routed traffic passing through the MX while
As previously mentioned, the MX line of security appliances is capable of L3 stateful access control in addition to more advanced inspection and filtering. Alongside the standard Layer 3 IP-based