cancel
Showing results for 
Search instead for 
Did you mean: 

Problems Attempting to Create a VPN Tunnel Within Another

SOLVED
Comes here often

Problems Attempting to Create a VPN Tunnel Within Another

We have a branch location with a Meraki MX84 with a VPN tunnel back to our Meraki controller in our data center and all works fine. Recently this branch location purchase a Verizon cell phone extender and they have been trying to get this to work for weeks. We consulted with out internal firewall team regarding the obvious possibility of blocked ports. What they said basically is they saw no traffic to and from the VZ device blocked. However I noticed that the VZ device was trying to build a VPN tunnel in between its self and Verizon. Even if that is allowed with some firewalls it proves to be slow and problematic. Im not a security expert by any means so please share your ideas on this.

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Head in the Cloud

Re: Problems Attempting to Create a VPN Tunnel Within Another

Setup a DMZ for this device, cell traffic doesn't need to be traversing through your network, it needs direct internet access. Ideally if your ISP supports it have the device connected to their equipment with its own public IP, that way it never has to touch your equipment.

1 REPLY 1
Highlighted
Head in the Cloud

Re: Problems Attempting to Create a VPN Tunnel Within Another

Setup a DMZ for this device, cell traffic doesn't need to be traversing through your network, it needs direct internet access. Ideally if your ISP supports it have the device connected to their equipment with its own public IP, that way it never has to touch your equipment.

Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.