Meraki & Umbrella SIG Integration for Site-to-Site VPN

Meraki & Umbrella SIG Integration for Site-to-Site VPN

The purpose of the project is to build a secure full proxy internet protection architecture with Meraki. This requires integration with the latest Umbrella SIG for DNS protection. 

 

I faced various challenges including Meraki documentation for integration as this is new integration(for SIG tunneling) and documentation is still internal. Many feature including IPSec config and User FQDN had to be populated by the Meraki Engineering team for establishing tunnels with a non-Meraki peer, which is umbrella in this case.

 

I ended up using two MX, one for head office MX100 and one for branch office MX68 for a hub & spoke topology. Non-Meraki gear includes the Cisco Umbrella SIG package.

 

This project is still in early testing phase and I hope with time, the structure and feature with enhance. I know that Meraki is known for its simplicity in the deployment phase with a high popularity for variety of features its support. 🙂