Meraki

Community

Intrusion detection and prevention

ITDUDE
New here
‎Aug 7 2024 11:26 AM
‎Aug 7 2024 11:26 AM

Intrusion detection and prevention

does VPN to VPN traffice pass though the Intrusion detection and prevention threat proteection  or does it bypass this?

Labels:
0 Kudos
2 Replies 2
KarstenI
Kind of a big deal
Kind of a big deal
‎Aug 7 2024 11:49 AM
‎Aug 7 2024 11:49 AM

IPS is done on the MX where the traffic enters the AutoVPN system; not on the Hub if you have Spoke -> Hub -> Spoke traffic.

But if I remember right, IDS would still be done on the Hub.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Kudos
In response to KarstenI
Jinbe
Meraki Employee
Meraki Employee
‎Aug 8 2024 10:20 AM
‎Aug 8 2024 10:20 AM

That is correct, security inspection such as Content Filtering and Threat Protection is done locally on the MX. The hub/concentrator MX will not inspect traffic from the remote VPN subnets.

 

You can find this information referenced here: https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Content_Filtering_and_Th...

 

 

If you found this post helpful, please give it kudos. If my answer solved your problem, click "accept as solution" so that others can benefit from it.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.