• About MW0013
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Re: Best method to capture east-west traffic to security appliance

by in Switching
‎02-07-2020 10:43 AM
‎02-07-2020 10:43 AM
These are not span sessions like you have on catalyst switches but only temporary mirrors. I'm not even sure if the destination port even replicates the encapsulation or not or if it keeps it untagged or tags it always depending on the source VLAN. At the moment you can only use netflow data to send to your security collector.   Maybe in the future the MS390 will support encrypted traffic analytics like Catalyst does and that could be a better way to support your case. ... View more

Re: General best practices for secure configurations?

by in Dashboard & Administration
‎10-29-2019 11:00 AM
‎10-29-2019 11:00 AM
The end goal is a document of best practices around secure design and configuration as it relates to Meraki devices. If we look at the CIS benchmarks for other vendor equipment, it provides detailed info on what to configure and step-by-step on how to configure the devices to provide a secure baseline config. Vulnerability scanners, such as Rapid7, even have policy scans using the CIS benchmarks where you can scan that equipment and see how it matches up against the benchmarks, which is extremely handy when working with the teams to guide them on improving security on their devices.  ... View more
© 2020 Meraki