Meraki

Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

DMZ Switch

Bears
Here to help
14 hours ago
14 hours ago

DMZ Switch

I would love to hear recommendation on what model of Meraki switch we can use as a DMZ switch? We have 2 Palo Alto firewall (High Availability/ HA Setup), and we're using 2 internet lines as well. In the current setup, we are using a Cisco Catalyst 2960c 8-PORT. Since we are planning to replace all the network switch with Meraki, we are thinking to replace as well this DMZ switch.

0 Kudos
2 Replies 2
cmr
Kind of a big deal
Kind of a big deal
14 hours ago
14 hours ago

As a like for like I'd go with an MS130-8 model.  You could upgrade to the MS130-8X if you want the possibility of adaptive policy in the future.  In reality any Meraki switch can be a DMZ switch as long as you give it access to the Meraki cloud for management and updates.

 

The only place I personally don't use Meraki switches is on the outside of the firewall where ISP connections need splitting to one or more devices.  I would always recommend using either an unmanaged switch, or one with out of band management in that location.  Cisco make many small cheap switches for that requirement.

Brash
Kind of a big deal
Kind of a big deal
2 hours ago
2 hours ago

Agreed with @cmr - unless you're doing something particularly special, any Meraki switch should work here.


Whilst not ideal, using Meraki switches to split ISP connections can work.
It's just a PITA if you do something that causes it to lose Internet connectivity.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.