Meraki

Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Two different Organisations with two MX

Solved
Holli69
Getting noticed
‎Nov 16 2021 12:54 PM
‎Nov 16 2021 12:54 PM

Two different Organisations with two MX

Hi,

 

we have 2 Organisations, one with MX100, the other one with MX450. We want to build a VPN tunnel between the 2 Orgas. 

 

As I know, AutoVPN isn't working, only configuration like a non-Meraki VPN.

 

Has anyone experience with this configuration ?

 

1) How stable is the VPN tunnel ? 

2) Is this config possible with IKEv2 instead of IKEv1, transfering 3 Subnets within the tunnel ?

 

We like to go with IKEv2 if this is possible ?

 

Labels:
0 Kudos
1 Accepted Solution
CptnCrnch
Kind of a big deal
Kind of a big deal
‎Nov 16 2021 1:01 PM
‎Nov 16 2021 1:01 PM

1) Stable enough for production use. Guess this will be the most accurate answer you'll get.

2) Yeah, IKEv2 is completely supported since 15.2.

 

Please take a look at the note mentioned on Site-to-Site VPN Settings - Cisco Meraki:

"When configuring NMVPN connections between 2 MXs in different organizations that are running MX15 code and above that are not using a UserFQDN and are NATed behind an upstream device, please ensure that the remote ID field of the NMVPN peer is filled out with the private IP address of the remote NATed MX."

View solution in original post

2 Replies 2
CptnCrnch
Kind of a big deal
Kind of a big deal
‎Nov 16 2021 1:01 PM
‎Nov 16 2021 1:01 PM

1) Stable enough for production use. Guess this will be the most accurate answer you'll get.

2) Yeah, IKEv2 is completely supported since 15.2.

 

Please take a look at the note mentioned on Site-to-Site VPN Settings - Cisco Meraki:

"When configuring NMVPN connections between 2 MXs in different organizations that are running MX15 code and above that are not using a UserFQDN and are NATed behind an upstream device, please ensure that the remote ID field of the NMVPN peer is filled out with the private IP address of the remote NATed MX."

In response to CptnCrnch
Holli69
Getting noticed
‎Nov 17 2021 12:03 AM
‎Nov 17 2021 12:03 AM

@CptnCrnch 

Many thanks for your reply. Is Site-to-Site VPN with IKEv2 possible with more than 1 Subnet (e.g. 3-4 Subnets)

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.