Hi
I have established a VPN tunnel to enable the establishment of a connection between these centers. They are in different organizations. People in the organization must have access to resources (DNS server, etc.) on CPD. I think the only way is to migrate the center to my organization. Am I righth ?
You have two Orgs connected with VPN to each other and want to use resources like DNS from Org A in org B, correct?
If you used Site-toSite-VPN you configure the remote site subnets and there has to be the subnets which are necessary. Afterwards the DNS server is reachable from the remote site. Keep in mind you may have to allow this communication in a third party firewall if you have one.
Hi @MarcP I spoke yesterday to the IT responsible of other organization if we can to add VPN tunnel the networks for reach CPD dns server for example
He reply this:
You can only Tunnel to the subnets in each individual site with Meraki 3rd party site to site. You cannot route traffic from other networks through a single network's tunnel in a 3rd party VPN. It's a limitation with Meraki.
The only way around making a ton of different tunnels to cover this would be to move the networks into the same organization.
like 1
This is the escenario
The org A knows the cpd
ORG A
ORG B
Needs to reach the network 10.0.0.0/8
I do not understand this:
"You cannot route traffic from other networks through a single network's tunnel in a 3rd party VPN"
If you have Org A and Org B and all or all necessary subnets in this VPN-Tunnel, the systems build all IPSec-SA´s on their own.
no one needs to set up seperated IPSec Tunnels for each remote network. Which I think is not possible to do several Tunnels between the same public IPs
Hello, @Mark
Do you believe adding the ip 10.0.0.0/8 ORG B will is enough to reach the network 10.0.0.0/8?
Do you believe adding the ip 10.0.0.0/8 ORG B will is enough to reach the network 10.0.0.0/8?
3rd party vpn setup tunnels from all networks to that 3rd party vpn destination.(unless you use tags)
There are other options ,like adding a seperate VPNdevice to build a tunnel and inject that routes using static route advertisements. I would recommend you to read this https://www.willette.works/merging-meraki-vpns/
hi @ww
I need to integrate a network within my organization.
I received this from Meraki Support, but I'm not sure what to do with it.
Please see this KB detailing organization splits: https://documentation.meraki.com/General_Administration/Organizations_and_Networks/Organization_Spli...
Before we get started, please review and acknowledge the following items:
Org split is only for moving some networks from a existing org to a brand new org.
If you want to move a network between existing org you need to move/config it manually or use the api