Community
  • About RYN0
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Re: MX HTTPS Inspection Coming ...

by RYN0 in Security / SD-WAN
‎05-06-2019 08:25 PM
‎05-06-2019 08:25 PM
The Doc does note that you can whitelist via L3 and L7 rules to exempt them from inspections. Though what you say Firepower can do is smarter though. ... View more

Re: MX for Gigabit Internet

by RYN0 in Security / SD-WAN
‎04-01-2019 08:59 AM
‎04-01-2019 08:59 AM
I have started coming across this issue for some of my small clients that are moving to WAN links over 500Mbps as well.   One of the options I am looking at is the Cisco RV340 series for my smaller clients. They get 900Mbps throughput and have security licensing and capabilities similar to that of the MX's.   https://www.cisco.com/c/en/us/products/routers/rv345-dual-gigabit-wan-vpn-router/index.html   https://www.cisco.com/c/dam/en/us/td/docs/routers/csbr/RV345/Administration_Guide/EN/b_RV345_RV345P_EN_AG.pdf   Hoping that Meraki eventually builds a 1Gbps MX for small clients soon, though. ... View more

Restrict computers for VPN access.

by RYN0 in Security / SD-WAN
‎02-12-2019 08:20 AM
‎02-12-2019 08:20 AM
Does anyone know if there is a way to restrict client VPN connectivity to allow only specific computers, when it comes to Meraki? Is it possible to do this with RADIUS perhaps?   I have a client that has a policy to only allow AD domain joined computers to connect to the VPN, and if Meraki/RADIUS/?, can do this I would like to sell them on Meraki. They are currently using a Sonicwall TZ400 for their firewall and an SRA1600 vpn appliance of which handles the required setup currently itself.   Thanks,   Ryan ... View more

Client VPN help - Split tunnel setup on a Chromebook

by RYN0 in Security / SD-WAN
‎09-04-2018 01:22 PM
‎09-04-2018 01:22 PM
Had anyone ever done this before? I cannot find any info on this at all. ... View more

Client VPN roadmap

by RYN0 in Security / SD-WAN
‎08-16-2018 12:32 PM
5 Kudos
‎08-16-2018 12:32 PM
5 Kudos
Has anyone heard whether Meraki is going to update their client VPN capabilities so that they are able to meet compliance standards. I have a client that just had one of their audit completed, and of course it failed due to their MX only being able to support IKEv1 aggressive mode. They are looking to replace the MX now with a brand that can meet  compliance. Would have thought Meraki would of had client VPN that would pass an audit taken care of by now. Pretty disappointing. ... View more

MX 64/65 throughput???

by RYN0 in Security / SD-WAN
‎08-15-2018 09:58 PM
1 Kudo
‎08-15-2018 09:58 PM
1 Kudo
Is it me or does it seem unusual that the bandwidth limit is only 250Mbps for MX64/65 security appliances? It just seems artificially low. I have some smaller clients that have 1Gbps fiber now, that only have between 10-20 devices, and they cannot even use their bandwidth fully, unless they were to get an MX250....again for less that 20 client devices.  Seems a bit ludicrous. I should be able to set the bandwidth to a full 1Gbps, since the WAN port is a gig ethernet port. I can do this on z1's. Why not MX64's? ... View more

Re: Client VPN Wish List

by RYN0 in Security / SD-WAN
‎02-01-2018 03:24 PM
‎02-01-2018 03:24 PM
having MFA/OTP built in would be nice still. I come from a SonicWALL background and this feature was built into the appliances.   Strange regarding AES, as I spoke to Meraki support not long aog this week, and they state the following is used for client VPN:   L2TP IKEv1 PAP authentication 3DES encryption SHA1 hashing Aggressive Mode   Definitely could be better and why it isn't in this day in age, who knows.   ... View more

Client VPN Wish List

by RYN0 in Security / SD-WAN
‎02-01-2018 02:38 PM
2 Kudos
‎02-01-2018 02:38 PM
2 Kudos
- Multi factor / one-time password authentication capability. - Stronger everything security-wise: AES encryption, anything better than SHA1 IKEv2, etc...AND configurable with however I would like based on my needs, not stuck with just one way of doing it ike we currently have.   These really have to be huge requests I imagine, especially for compliance needs. I really do hope this is already on the Meraki roadmap for their MX firmware. ... View more

Re: Community Challenge: Ready, Get set....

by RYN0 in Community Announcements
‎11-15-2017 01:03 PM
‎11-15-2017 01:03 PM
If you need to deploy security at the edge quickly, MX appliances with Adv. Sec. licensing is the way to go. Deployment is very simple and very fast. AMP does a great job of catching malicious threats. Layer that with the IPS and Content Filtering to protect your network from exploits and other web based threats. We are looking into deploying ThreatGrid for analyzing unknown files and their behavior.   ... View more
© 2019 Meraki