Problems Attempting to Create a VPN Tunnel Within Another

SOLVED
Merkie
Comes here often

Problems Attempting to Create a VPN Tunnel Within Another

We have a branch location with a Meraki MX84 with a VPN tunnel back to our Meraki controller in our data center and all works fine. Recently this branch location purchase a Verizon cell phone extender and they have been trying to get this to work for weeks. We consulted with out internal firewall team regarding the obvious possibility of blocked ports. What they said basically is they saw no traffic to and from the VZ device blocked. However I noticed that the VZ device was trying to build a VPN tunnel in between its self and Verizon. Even if that is allowed with some firewalls it proves to be slow and problematic. Im not a security expert by any means so please share your ideas on this.

1 ACCEPTED SOLUTION
SoCalRacer
Kind of a big deal

Setup a DMZ for this device, cell traffic doesn't need to be traversing through your network, it needs direct internet access. Ideally if your ISP supports it have the device connected to their equipment with its own public IP, that way it never has to touch your equipment.

View solution in original post

1 REPLY 1
SoCalRacer
Kind of a big deal

Setup a DMZ for this device, cell traffic doesn't need to be traversing through your network, it needs direct internet access. Ideally if your ISP supports it have the device connected to their equipment with its own public IP, that way it never has to touch your equipment.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels