Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Question on Site 2 Site VPN in Meraki

merman01
Here to help
‎Sep 8 2022 3:59 AM
‎Sep 8 2022 3:59 AM

Question on Site 2 Site VPN in Meraki

Question.

 

Are the following for internet traffic only or do they operate for S2S VPN links too.

Advanced Malware Protection (AMP)

Intrusion detection and prevention

Umbrella protection
Content Filtering
Snort Rules

Also if there is a direct connection to another site (not meraki s2s) do the above rules apply too.

 

Recently seeing restrictions on operations that upto a few days ago worked fine on S2S and now dont with no modifications made.

0 Kudos
Subscribe
4 Replies 4
alemabrahao
Kind of a big deal
Kind of a big deal
‎Sep 8 2022 4:34 AM
‎Sep 8 2022 4:34 AM

Hello @merman01,

 

 

I think the answer to your question Is yes, look this:

 

https://community.meraki.com/t5/Security-SD-WAN/Threat-Protection-with-site-to-site-VPN/td-p/10213

 

But you can confirm It, opening a case on Meraki support.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Sep 8 2022 1:00 PM
‎Sep 8 2022 1:00 PM

I *think* "Intrusion detection and prevention/SNORT" operates on all traffic.

 

Everything else does not touch non-Meraki site-to-site VPNs.

0 Kudos
Subscribe
In response to PhilipDAth
CptnCrnch
Kind of a big deal
Kind of a big deal
‎Sep 9 2022 1:56 AM
‎Sep 9 2022 1:56 AM

From what I've tested (a while ago though), I can confirm.

0 Kudos
Subscribe
Bindhiran
Here to help
‎Sep 10 2022 7:03 AM
‎Sep 10 2022 7:03 AM

Intrusion Detection & Prevention is applicable for Inter VLAN traffics if it pass through the MX.

 

And the complete list is applicable for Internet traffic but not for Auto VPN and Non-Meraki peerings.

 

 

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.