Meraki

Community

About PN

Re: vMX client VPN on AWS

by in Cloud Security & SD-WAN (vMX)
‎Feb 15 2018 12:40 AM
‎Feb 15 2018 12:40 AM
Hi D, thanks for clarifying that.   One last question, do you know if this is something that will become available in future?   P ... View more

Re: vMX client VPN on AWS

by in Cloud Security & SD-WAN (vMX)
‎Feb 14 2018 10:03 AM
‎Feb 14 2018 10:03 AM
I don't want to access AWS via physical mx in the office I want to go straight to AWS --> Vmx to access aws subnets (non office) thus the solution you suggest would not work.   So I'm I to understand that there is no way to access an aws subnet using client vpn connecting directy to an aws vmx instance without the registry hack?   thanks, P ... View more

Re: vMX client VPN on AWS

by in Cloud Security & SD-WAN (vMX)
‎Feb 14 2018 9:48 AM
‎Feb 14 2018 9:48 AM
Sorry perhaps I wasn't clear enough, let's forget auto-vpn between physical sites and AWS as that is working fine.   All I need to do is to be able to access subnet A in AWS using client vpn on windows 10 pro from a remote random location, at the moment I can't even establish the ipsec tunel to the vmx on aws without using the registry hack.   I just noticed ip's for devices were wrong please see below updated network map.   https://ibb.co/fAAfy7   thanks, P ... View more

Re: vMX client VPN on AWS

by in Cloud Security & SD-WAN (vMX)
‎Feb 14 2018 9:05 AM
‎Feb 14 2018 9:05 AM
Hi D, Thanks for your reply,   I'm simply trying to access a local subnet on aws, I tried the windows 10 registry hack below as suggested which works:   "Client behind NAT devices Solution: Modern Windows devices do not support L2TP/IPsec connections when the Windows computer or VPN server are located behind a NAT. If the Windows VPN client fails with Error 809 when trying to establish a VPN connection to an MX located behind a NAT, add the "AssumeUDPEncapsulationContextOnSendRule" DWORD value to the Windows registry. This DWORD value allows Windows to establish security associations when both the VPN server and the Windows based VPN client computer are behind NAT devices."   However I don't want to implement a company-wide registry change just because of this, I also don't understand why that doesn't happen when I vpn to the office physical mx not aws from a location such as a coffee shop as I'm also behind NAT in that situation?   It may be an aws setup issue or vmx limitation I've attached a network map below which shows the current setup.   Site to site vpn between physical and aws vmx works fine it's just client vpn to aws vmx.    Thanks, P   https://ibb.co/iy0KrS   ... View more

vMX client VPN on AWS

by in Cloud Security & SD-WAN (vMX)
‎Feb 13 2018 10:14 AM
‎Feb 13 2018 10:14 AM
Hi,   Has anyone managed to get client vpn working on aws using vmx?   We are using several vmx for site to site with other vmx's and physical MX's for auto vpn but when I try to setup client VPN I get error 809, I've tried everything I can think of on Meraki and aws to make it work but haven't had any luck so far.   Cheers, P ... View more
© 2024 Cisco Systems, Inc.