Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2390
Views
0
Helpful
8
Replies

We are replacing Cisco ASA's with an SD-Wan solution

Go to solution
barryrosenhouse
Level 1
Level 1

‎11-10-2021 05:53 AM

Most likely from AT&T - My question is I was tasked with giving my director 2 solutions, either Meraki SD-Wan or Fortinet SD-Wan. Removing the 2 Cisco ASA's (5505 and 5515) at our Headquarters. Does anyone know what devices need to replace those 55XX's or has anyone done this type of cutover before that can help me here? 

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
paul driver
VIP
VIP

‎11-11-2021 01:06 AM - edited ‎11-11-2021 01:09 AM

Hello
The meraki MX is a UTM a (security, network, application control), its centrally managed, single gui based dashboard for multiple devices,(UTMs, Switches,APs,,Cameras, etc..) so easy to use, it also supports live troubleshooting(pcaps analytics etc.) from within, A central place for everything.

The SD-WAN function is built into the MX no tricky overlay to work out, it uses your internet BW via ipsec vpns so no expensive WAN MPLS,( lower wan costs but massively increase bandwidth)

The Auto vpn function is very easy,  no acls crytpo maps, just two/three clicks and you have site to site connectivity (active/active, active/passive) for load balancing.

It uses dynamic path selection (likes Cisco’s optimised edge routing) so the mx choose the best path based on the performance condition of your existing egress paths


As for the security, its geo based(so pick what sites you want to apply that security) and includes IPS(snort), Content filtering, AMP via cisco secure formally known as threat grid and best of all the security updates are pushed out as SaaS so you dont need to worry about missing any meraki device not being updated

 

Good kit all round.


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

View solution in original post

0 Helpful
8 Replies 8

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎11-10-2021 06:29 AM

ASA  replacement with Firepower is good choice.

 

if you like to choose between Meraki / Fortinet - if you are cisco housem then going with Meraki has advantage.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
barryrosenhouse
Level 1
Level 1
In response to balaji.bandi

‎11-10-2021 06:33 AM

Thx Balaji, We are mostly a Cisco house, Is the advantage because of compatibility or price do you know?

 

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to barryrosenhouse

‎11-10-2021 06:42 AM 

Is the advantage because of compatibility or price do you know?

More elaborate this will help us to understand,

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
barryrosenhouse
Level 1
Level 1
In response to barryrosenhouse

‎11-10-2021 07:28 AM

I was tasked with giving my director 2 solutions, either Meraki SD-Wan or Fortinet SD-Wan

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to barryrosenhouse

‎11-10-2021 08:05 AM

Meraki SD-Wan  - is reasonable. not sure Fotinet - (worked on FW , not SD-WAN product ?)

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
paul driver
VIP
VIP

‎11-11-2021 01:06 AM - edited ‎11-11-2021 01:09 AM

Hello
The meraki MX is a UTM a (security, network, application control), its centrally managed, single gui based dashboard for multiple devices,(UTMs, Switches,APs,,Cameras, etc..) so easy to use, it also supports live troubleshooting(pcaps analytics etc.) from within, A central place for everything.

The SD-WAN function is built into the MX no tricky overlay to work out, it uses your internet BW via ipsec vpns so no expensive WAN MPLS,( lower wan costs but massively increase bandwidth)

The Auto vpn function is very easy,  no acls crytpo maps, just two/three clicks and you have site to site connectivity (active/active, active/passive) for load balancing.

It uses dynamic path selection (likes Cisco’s optimised edge routing) so the mx choose the best path based on the performance condition of your existing egress paths


As for the security, its geo based(so pick what sites you want to apply that security) and includes IPS(snort), Content filtering, AMP via cisco secure formally known as threat grid and best of all the security updates are pushed out as SaaS so you dont need to worry about missing any meraki device not being updated

 

Good kit all round.


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Go to solution
barryrosenhouse
Level 1
Level 1
In response to paul driver

‎11-11-2021 01:58 PM

Thanks much for your reply. I will def look into this.

Barry



0 Helpful

Go to solution
barryrosenhouse
Level 1
Level 1
In response to paul driver

‎11-11-2021 01:59 PM

Paul I appreciate the reply - Very good info. i was lost.

 

Barry

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card