I’d like to share a recent implementation experience using a full-stack Meraki solution — including MX75 Security Appliance, MR44 Wi-Fi 6 Access Points, and MS130 Series Switches (8-port PoE and 48-port models). This deployment was focused on delivering a secure, scalable, and segmented network architecture for a dynamic office environment. 🔧 Project Highlights: 🔐 Meraki MX75 Firewall Enabled all default security features: IPS, AMP, Web Filtering, Anti-Spam, and Anti-Malware. Configured dial-up IPsec VPN for secure remote access. Deployed dual internet links with load balancing, and automatic failover/rollback, ensuring seamless internet continuity without manual intervention. 📶 Meraki MR44 Wi-Fi 6 APs Deployed dual SSIDs: Corporate SSID with WPA2/WPA3-Enterprise + 802.1X Authentication. Guest SSID with WPA2/WPA3-PSK and client isolation, mapped to a separate VLAN for security. 🔌 Meraki MS130-8P and MS130-48 Switches Configured multiple Corporate VLANs (e.g., Development, BPO, Test, Operations). Set up a completely isolated Guest VLAN. Implemented inter-VLAN routing to control and monitor internal traffic flow. VLANs and ports were assigned based on device types and access requirements. ⚙️ Challenges Encountered: Ensuring consistent SSID authentication and seamless roaming across the floor without performance issues. Fine-tuning failover policies to handle rollback precisely under real-world conditions. Coordinating VLAN assignments across a mixed environment of users, devices, and access policies. 💡 Experience & Takeaways: Meraki’s cloud dashboard enabled rapid deployment and real-time visibility across all devices. The integrated security stack on the MX75 provided peace of mind with minimal configuration overhead. User onboarding via 802.1X with username/password worked smoothly, especially with Meraki Splash page integration. The solution was highly adaptable for future scaling and policy enforcement.
... View more
