Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Intrusion detection and prevention

ITDUDE
New here
Wednesday
Wednesday

Intrusion detection and prevention

does VPN to VPN traffice pass though the Intrusion detection and prevention threat proteection  or does it bypass this?

Labels:
0 Kudos
Subscribe
2 Replies 2
KarstenI
Kind of a big deal
Kind of a big deal
Wednesday
Wednesday

IPS is done on the MX where the traffic enters the AutoVPN system; not on the Hub if you have Spoke -> Hub -> Spoke traffic.

But if I remember right, IDS would still be done on the Hub.

0 Kudos
Subscribe
In response to KarstenI
Jinbe
Meraki Employee
Meraki Employee
Thursday
Thursday

That is correct, security inspection such as Content Filtering and Threat Protection is done locally on the MX. The hub/concentrator MX will not inspect traffic from the remote VPN subnets.

 

You can find this information referenced here: https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Content_Filtering_and_Th...

 

 

If you found this post helpful, please give it kudos. If my answer solved your problem, click "accept as solution" so that others can benefit from it.
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.