Meraki

Community

Full Tunnel Meraki (branch) to Sonicwall (primary site) S2S VPN

RCMikesell
Conversationalist
4 hours ago
4 hours ago

Full Tunnel Meraki (branch) to Sonicwall (primary site) S2S VPN

Looking to build a full tunnel from a meraki at a branch office to send all traffic over an existing Site to Site VPN to a Sonicwall at the main site.  Based upon reading the Site-to-site_VPN setup for non-meraki VPNs I believe I should be able to set a 0.0.0.0/0 in the IPSec subnets (I am just doing 8.8.8.8 initially as a test).  I am basing the sonicwall side on their "how can i configure tunnel all internet traffic over site to site vpn (170504924710971).    When I set this up,  I get no return on pings.   Has anyone else been able to successfully setup and operate this type of setup?   

 

Thanks

Labels:
0 Kudos
3 Replies 3
BlakeRichardson
Kind of a big deal
Kind of a big deal
31m ago
31m ago

Have you followed this documentation?

 

https://documentation.meraki.com/MX/Site-to-site_VPN/MX_to_Sonicwall_Site-to-Site_VPN_Setup

 

https://www.sonicwall.com/medialibrary/docs/tech-alliance/IntegrationGuide_CiscoMeraki.pdf

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Kudos
BlakeRichardson
Kind of a big deal
Kind of a big deal
29m ago
29m ago

I can confirm this works, I setup a S2S tunnel from my MX at home to an old Sonicwall TZ600 about two years ago just to have a play around with site to site using different vendors. 

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Kudos
In response to BlakeRichardson
RCMikesell
Conversationalist
23m ago
23m ago

Blake, 

    I did note that this was "over an existing Site to Site VPN" that we have in place that those guides assist in setting up.  That is working without issue.  I need to add/update the VPN now to send all internet bound traffic over this same existing VPN and have it reach the internet and allow returns.  That said, maybe I may need firewall rules, but as that data is transformed on the SonicWall site using a Nat rule from WAN to WAN I assumed it was allowed traffic.  

 

I used these two guides when trying to initially configure and test with just 8.8.8.8

 

https://www.sonicwall.com/support/knowledge-base/how-can-i-configure-tunnel-all-internet-traffic-ove...

 

https://documentation.meraki.com/MX/Site-to-site_VPN/Site-to-Site_VPN_Settings#Non-Meraki_VPN_peers

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2025 Cisco Systems, Inc.