Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

VMX on Azure for Client connectivity

Mohammad
Getting noticed
‎Jun 27 2020 1:46 AM
‎Jun 27 2020 1:46 AM

VMX on Azure for Client connectivity

Hi Guys,

 

Just need more information, How to proceed with VMX on Azure cloud for client migration?

 

I have completed with Installation of VMX on Azure and now its showing Healthy status on my Dashboard now.

 

I have existing environment with ASA for Client connectivity, now i need to migrate client from ASA to VMX.

 

please help me how to do and what are checklist need to follow is there any things to do more on ASA and VMX?

 

 

0 Kudos
Subscribe
8 Replies 8
cmr
Kind of a big deal
Kind of a big deal
‎Jun 27 2020 2:25 AM
‎Jun 27 2020 2:25 AM

One thing to be aware of is that you will need to setup a split tunnel VPN if you want the clients to access the internet, the default is full tunnel.  This is due to how Azure works.

0 Kudos
Subscribe
In response to cmr
Mohammad
Getting noticed
‎Jun 27 2020 2:31 AM
‎Jun 27 2020 2:31 AM

@cmr  Perfectly Said!

 

 

 

 

Do they use same cisco Anyconnect to connect with VMX?

any changes on Client side on Anyconnect?

How user Auth on VMX?

can i create local database of user for connect on VMX?

 

Anything more you need share?

0 Kudos
Subscribe
In response to Mohammad
cmr
Kind of a big deal
Kind of a big deal
‎Jun 27 2020 2:32 AM
‎Jun 27 2020 2:32 AM

Anyconnect is in an invitational beta at the moment for MXs

0 Kudos
Subscribe
In response to cmr
Mohammad
Getting noticed
‎Jun 27 2020 3:17 AM
‎Jun 27 2020 3:17 AM

@cmr  Thanks

 

so I can use Anyconnect for testing ]?

 do they required any limitation on MX IOS version?

0 Kudos
Subscribe
In response to Mohammad
cmr
Kind of a big deal
Kind of a big deal
‎Jun 27 2020 3:27 AM
‎Jun 27 2020 3:27 AM

At the moment you have to be invited into the beta programme, if you have a Meraki account manager, I'd ask them to add you.  I believe it will shortly be on a public beta, but I don't have a date.

0 Kudos
Subscribe
In response to cmr
Mohammad
Getting noticed
‎Jun 27 2020 3:32 AM
‎Jun 27 2020 3:32 AM

@cmr  Perfect, I will check with Meraki AM.

 

One more thing, I am able to reach my VMX IP and ping them from internet, but i am not sure how to connect and what changes required to connect my servers which are behind of VMX on Azure?

 

Appreciate your comments?

0 Kudos
Subscribe
In response to Mohammad
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Jun 27 2020 2:05 PM
‎Jun 27 2020 2:05 PM

Check out my client VPN configuration wizard for Windows 10.

https://www.ifm.net.nz/cookbooks/meraki-client-vpn.html 

 

As others have said, you'll need to use split tunnel mode, and specify the prefixes used in Azure.  Azure will also need a route back to the VMX for the client VPN subnet.

 

You'll need to allow udp/500 and udp/4500 from the Internet to the VMX in the Azure firewall rules.

0 Kudos
Subscribe
In response to PhilipDAth
Mohammad
Getting noticed
‎Jul 15 2020 1:34 AM
‎Jul 15 2020 1:34 AM

@PhilipDAth 

 

I am able to connect to my VMX and and getting IP from DHCP scope on VMX, but my client IP subnet and IP one Azure VM Private Ip are in different subnet.

 

Is there any things need to do from VMX side?

As of now i am running full mesh on VMX, I hope its not required, because this VMX is only for Client VPN to azure?

 

 

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
© 2024 Cisco Systems, Inc.