Meraki Community

nirmalkaria · ‎Aug 13 2023

1. Can I ssh into AWS Cisco Meraki VMx Ec2 Instance ? If yes then is there any default password to login ? I am directed to add a password for every login.

2. If not then how can access Command line for AWS Cisco Meraki VMx Ec2 Instance ?

DarrenOC · ‎Aug 13 2023

hi @nirmalkaria - as far as i'm aware you can't ssh or command line any Meraki product line.

Are you getting mixed up with the Juniper vMX in AWS?

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.

nirmalkaria · ‎Aug 13 2023

Hi @DarrenOC Thank you for your reply so then only way would be to get the license key and create network and register my Vmx instance via Meraki dashboard and do you know how to get the license key ?

DarrenOC · ‎Aug 13 2023

Hi @nirmalkaria , bingo, you’ve got it. You can only manage these devices via the Meraki Dashboard. The license you can buy from a Cisco reseller or somewhere like Insight online.

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.

nirmalkaria · ‎Aug 13 2023

@DarrenOC - Thank you.

Also one question have you tried connecting Meraki Mx with a direct connect circuit to AWS.https://docs.aws.amazon.com/whitepapers/latest/aws-vpc-connectivity-options/aws-direct-connect.html

1. If so then can you share the BGP configuration ?

2. Do we need Vlan interface ?

3. Did you use the MX as Passthrough or VPN Concentrator to get the BGP peer ?

My thoughts

1. The first thing we did to do is set the MX in a One-Armed Concentrator mode.
Click on the network where the MX is located and then

Security & SD-WAN > Configure > Addressing & VLANs > Passtrough or VPN Concentrator mode

2. The next step is to enable the VPN configuration and choose for the hub mode.

Security & SD-WAN > Configure > Hub

3. Enable the BGP Settings. Scroll down to the BGP Settings. Enable it and put the AS number for the auto-vpn domain.

4. Add the neighbor and the AS number of that neighbor and just click on save.

DarrenOC · ‎Aug 14 2023

Hi @nirmalkaria , from your comment on another post I believe you’ve discovered the answer. Require a router/ISR for the cct termination and BGP peering

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.

nirmalkaria · ‎Aug 14 2023

@DarrenOC Thank you for your reply.

1] Meraki Mx ----- ISP Router ----- L1,L2 (Vlan) and L3 (BGP) ---- AWS router

So the above steps which I describe will work in above set up [1] right where everything will terminate on ISP router and then peering mechanism to exchange routes between Mx and ISP. ISP will be the owner here. BGP peer IP on Mx will be one AWS right ?

or would below set up would be possible Where L2 and L3 would be terminated on Mx.

2] Meraki Mx ---- L2(Vlan) and L3 (BGP) ---- ISP Router ---- L1 ---- AWS router

1. By any chance do you have any Documents or example configs which explain the entire set up. ?