Thanks for the kind help everyone. This has been amazing.
I am assured about the encryption. However the concern is about authenticating the Mesh repeater to the Mesh gateway.
Is there a possibility to upload certificates on the repeater, so that the authentication can be EAP TLS?
When looking into the packets, there are no association or auth frames.
First there are some beacons from both ends
Then some frames of "Meraki Discovery Protocol" 300 bytes in size from the repeater
Finally some unrecognizable frames packets of 1578 bytes sent to broadcast address of ff:ff:ff:ff:ff:ff by both mesh repeater & gateway.
The big size of 1578 bytes makes me think its a certificate.
Is Meraki already using certificates to authenticate the mesh APs in the background?
If yes, we can get pass by the requirement of having them authenticate via EAP-TLS.