Meraki

Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

About kima25

Re: Dynamic routing in the routed mode

by Meraki Employee in Security & SD-WAN
‎Dec 6 2023 2:10 AM
4 Kudos
‎Dec 6 2023 2:10 AM
4 Kudos
While OSPF is supported, as per the documentation linked previously by @Badr-eddine, note the phrase 'to advertise remote VPN subnets'.    You can't use OSPF to learn the subnets on your local LAN (from a Layer 3 switch, for example) and/or advertise the default route to it.   You would need to use static routing for this - perhaps between Virtual IPs, if you want a degree of resilience. ... View more

Re: SSID tunneling

by Kind of a big deal in Wireless
‎Oct 13 2023 1:28 PM
‎Oct 13 2023 1:28 PM
I agree with him, but the number of clients must also be taken into consideration, and when I talk about the number of clients I am referring to the total number of clients, such as VPN clients, local clients, etc. Don't you think it makes sense? Generally (I think the vast majority of cases) it is the factor that should be taken into consideration the most. ... View more

Re: Cisco+ Secure Connect and MX

by Kind of a big deal in SASE / Secure Connect
‎Oct 3 2023 9:36 AM
‎Oct 3 2023 9:36 AM
Probably yes, as the documentation does not mention license lever.   https://documentation.meraki.com/CiscoPlusSecureConnect ... View more

Re: Cisco EZ VPN alternative

by in Security & SD-WAN
‎Jul 7 2023 1:50 PM
‎Jul 7 2023 1:50 PM
Hi @FabianSchleef ,  thank you for your response 🙂  ... View more

Re: Meraki and Citrix

by Kind of a big deal in Security & SD-WAN
‎Apr 3 2023 3:47 AM
‎Apr 3 2023 3:47 AM
I'm pretty sure that the answer is not, but why don't you try a POC before? ... View more

Re: number of users in vMX

by Kind of a big deal in Cloud Security & SD-WAN (vMX)
‎Jan 5 2023 3:09 AM
5 Kudos
‎Jan 5 2023 3:09 AM
5 Kudos
VMX's aren't sized by number of users, but by the bandwidth and number of VPN tunnels they support. https://documentation.meraki.com/MX/MX_Installation_Guides/vMX_Comparison_Datasheet ... View more

Re: anti-DDOS & MX

by Meraki Employee in Security & SD-WAN
‎Dec 20 2022 3:01 PM
1 Kudo
‎Dec 20 2022 3:01 PM
1 Kudo
I also agree with Phil here, and want to give a bit more technical context on this response.   A DDoS falls under the broader umbrella of what's known as a resource exhaustion attack: https://owasp.org/www-project-automated-threats-to-web-applications/assets/oats/EN/OAT-015_Denial_of_Service   While I've seen varying descriptions, in general, any resource can fall under such an Umbrella, including network bandwidth. If someone's saturating your uplink with garbage downlink traffic, there's very little mitigating it on your network perimeter would really accomplish anyway. In a more traditional sense, we can't mitigate against a DDoS consuming CPU or memory either; processing that many inbound packets through our IPS and inbound firewall is always going to consume both. ... View more

Re: Inspection SSL in SDWAN Meraki + certificates management

by Meraki Employee in Security & SD-WAN
‎Dec 20 2022 2:48 PM
3 Kudos
‎Dec 20 2022 2:48 PM
3 Kudos
Just to give fair warning, in its current form,  it's a *very* limited support feature, and it's far from being something Meraki Support can recommend using. ... View more

Re: routed Mode with Firewall (SDWAN)

by Meraki Employee in Security & SD-WAN
‎Dec 12 2022 5:43 AM
‎Dec 12 2022 5:43 AM
As @ww hints, the question here is;    what role is the extra non-MX firewall there to perform?   Most customers will, at branches, just have a/the routed mode MX.   With the right license level, it's usually all the branch firewall you need.   Except if you really have to perform https decrypt, in which case, pairing up the MX with Umbrella is probably the most scalable approach   Hopefully you found this already but, for your DCs, go with one-armed VPN Concentrator MXs behind your DC firewalls, as per https://documentation.meraki.com/MX/Deployment_Guides/VPN_Concentrator_Deployment_Guide ... View more

Re: DIFFERENCE BETWEEN ADVANCED LICENCE ANDE ENTREPRISE LICENCE FOR ACCES P...

by Meraki Employee in Cellular Gateways
‎Dec 26 2021 7:02 PM
1 Kudo
‎Dec 26 2021 7:02 PM
1 Kudo
@kima25  From duplicate thread, just so this one can be closed out/resolved.   For Meraki MR + Umbrella integration, there was the original API integration option, and now also an automated (single-SKU) integration with the “MR Advanced/Upgrade” license. This allows you to assign predefined Umbrella content filtering and security policies to an SSID or Group Policy directly from the dashboard and removes the need to integrate with an existing Umbrella dashboard or Umbrella account.  For existing MR customers that do not yet have Umbrella, there is an UPGRADE license to enable the Umbrella functionality.  For new MR deployments that also want Umbrella, that’s the ADVANCED license.   There are some pros and cons that will prompt you to choose one over the other based on the requirements.  The manual integration does require some (simple) manual configuration of API keys, an existing Umbrella account, and you’ll still have 2 Dashboards.  The automated single-SKU integration is an all-in-one simple and turn-key solution but cannot create custom policies.  It’s definitely not full-blown Umbrella.  It provides a broad but generally adequate view of DNS events and everything is managed from the Meraki Dashboard only.   If customers really need the finest policy granularity and deepest visibility, then go with the “regular” Umbrella deployment and the API integration option.  For customers who simply want to add typical Umbrella protection to their Meraki wireless deployment this Advanced/Upgrade license might be the way to go.   Here is a summary slide attached. Hope that helps! ... View more

Re: MR Advanced license

by Meraki Employee in Wireless
‎Dec 23 2021 5:26 PM
1 Kudo
‎Dec 23 2021 5:26 PM
1 Kudo
@kima25 For Meraki MR + Umbrella integration, there was the original API integration option, and now also an automated (single-SKU) integration with the “MR Advanced/Upgrade” license. This allows you to assign predefined Umbrella content filtering and security policies to an SSID or Group Policy directly from the dashboard and removes the need to integrate with an existing Umbrella dashboard or Umbrella account.  For existing MR customers that do not yet have Umbrella, there is an UPGRADE license to enable the Umbrella functionality.  For new MR deployments that also want Umbrella, that’s the ADVANCED license.   There are some pros and cons that will prompt you to choose one over the other based on the requirements.  The manual integration does require some (simple) manual configuration of API keys, an existing Umbrella account, and you’ll still have 2 Dashboards.  The automated single-SKU integration is an all-in-one simple and turn-key solution but cannot create custom policies.  It’s definitely not full-blown Umbrella.  It provides a broad but generally adequate view of DNS events and everything is managed from the Meraki Dashboard only.   If customers really need the finest policy granularity and deepest visibility, then go with the “regular” Umbrella deployment and the API integration option.  For customers who simply want to add typical Umbrella protection to their Meraki wireless deployment this Advanced/Upgrade license might be the way to go.   Here is a summary slide attached. Hope that helps!       ... View more

Re: can we use MS390 in CORE

by Kind of a big deal in Switching
‎Dec 1 2021 10:09 AM
1 Kudo
‎Dec 1 2021 10:09 AM
1 Kudo
@kima25 : select the device depends upon the requirement in the core  https://meraki.cisco.com/product-collateral/ms-family-datasheet/?file   ... View more
© 2024 Cisco Systems, Inc.