Meraki

Community

Meraki MX VPN use IPSEC tunnel mode or transport mode?

Solved
SopheakMang
Building a reputation
‎Apr 12 2020 1:31 AM
‎Apr 12 2020 1:31 AM

Meraki MX VPN use IPSEC tunnel mode or transport mode?

Dear Expert ,

 

i want to make sure that when Meraki MX peer VPN with each other , they use IPSEC tunnel mode or IPSEC transport mode , Because i want to know if the actual source and destination ip will be encrypted or not , or just encrypt only payload.

 

Please help answer this question 😊

0 Kudos
1 Accepted Solution
CptnCrnch
Kind of a big deal
Kind of a big deal
‎Apr 12 2020 3:23 AM
‎Apr 12 2020 3:23 AM

Tunnel mode

View solution in original post

5 Replies 5
CptnCrnch
Kind of a big deal
Kind of a big deal
‎Apr 12 2020 3:23 AM
‎Apr 12 2020 3:23 AM

Tunnel mode

In response to CptnCrnch
SopheakMang
Building a reputation
‎Apr 12 2020 3:27 AM
‎Apr 12 2020 3:27 AM

Hi @CptnCrnch ,

So that's mean MX will encrypt the actual source and destination ip ?
and will use another ip header to transmit the traffic ?
0 Kudos
In response to SopheakMang
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Apr 12 2020 1:19 PM
‎Apr 12 2020 1:19 PM

http://www.firewall.cx/networking-topics/protocols/870-ipsec-modes.html 

In response to PhilipDAth
SopheakMang
Building a reputation
‎Apr 12 2020 7:18 PM
‎Apr 12 2020 7:18 PM

Thanks all expert
0 Kudos
In response to SopheakMang
GIdenJoe
Kind of a big deal
Kind of a big deal
‎Apr 13 2020 7:41 AM
‎Apr 13 2020 7:41 AM

Non Meraki VPNs use ESP tunnel mode encap.
However Meraki VPNs encrypt their packet directly under UDP.
Screenshot below, mind that 10.10.10.x is the actual WAN IP of the MX but it's behind a NAT.

GIdenJoe_0-1586788897923.png

 

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.