Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Azure S2S VPN

Solved
charles07
Getting noticed
‎Oct 23 2021 12:18 AM
‎Oct 23 2021 12:18 AM

Azure S2S VPN

Does Meraki MX supports Azure VPN with Basic SKU VPN Gateway.

 

Azure VPN Gateway configuration has an option to select SKU - https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpngateways

 

From my observation if Basic is selected, Meraki would not form S2S tunnel.

If any SKU above Basic is selected, Meraki MX forms S2S tunnel successfully.

 

Any idea why Meraki MX is not able to form S2S tunnel with Azure for Basic SKU.

 

Azure VPN SKU mentioned here - https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpngateways under "Gateway SKUs by tunnel, connection, and throughput"

Labels:
0 Kudos
Subscribe
1 Accepted Solution
charles07
Getting noticed
‎Oct 25 2021 5:34 AM
‎Oct 25 2021 5:34 AM

After hours of troubleshooting we identified the issue.

Meraki MX does not form VPN with Azure Basic Gateway SKU

Azure VPN gateway SKU should be VPNGW1 or higher

 

Our Azure SKU was Basic. Somehow Meraki was not forming tunnel with it.

 

https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpn-gateway-settings

View solution in original post

Subscribe
3 Replies 3
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Oct 23 2021 1:03 PM
‎Oct 23 2021 1:03 PM

I think it should work.  Just make sure you configure it as a policy-based VPN, and note that you can only have one policy-based VPN.

 

Another option (which we have used lots) is to deploy an Ubuntu machine running StrongSwan and terminate the VPN on that.

https://www.ifm.net.nz/cookbooks/meraki-vpn-to-azure.html 

0 Kudos
Subscribe
charles07
Getting noticed
‎Oct 25 2021 5:34 AM
‎Oct 25 2021 5:34 AM

After hours of troubleshooting we identified the issue.

Meraki MX does not form VPN with Azure Basic Gateway SKU

Azure VPN gateway SKU should be VPNGW1 or higher

 

Our Azure SKU was Basic. Somehow Meraki was not forming tunnel with it.

 

https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpn-gateway-settings

Subscribe
In response to charles07
JimmyM
Getting noticed
‎Oct 27 2021 6:03 AM
‎Oct 27 2021 6:03 AM

Hello.

 

Just to mention that on my side I have a lot of customers with a dr site in Azure and all of them are with the Basic SKU. I haven't had a problem with the MX68, 84, 85 and 100.

 

I think it should work.

Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.