11-10-2021 05:53 AM
Most likely from AT&T - My question is I was tasked with giving my director 2 solutions, either Meraki SD-Wan or Fortinet SD-Wan. Removing the 2 Cisco ASA's (5505 and 5515) at our Headquarters. Does anyone know what devices need to replace those 55XX's or has anyone done this type of cutover before that can help me here?
Solved! Go to Solution.
11-11-2021 01:06 AM - edited 11-11-2021 01:09 AM
Hello
The meraki MX is a UTM a (security, network, application control), its centrally managed, single gui based dashboard for multiple devices,(UTMs, Switches,APs,,Cameras, etc..) so easy to use, it also supports live troubleshooting(pcaps analytics etc.) from within, A central place for everything.
The SD-WAN function is built into the MX no tricky overlay to work out, it uses your internet BW via ipsec vpns so no expensive WAN MPLS,( lower wan costs but massively increase bandwidth)
The Auto vpn function is very easy, no acls crytpo maps, just two/three clicks and you have site to site connectivity (active/active, active/passive) for load balancing.
It uses dynamic path selection (likes Cisco’s optimised edge routing) so the mx choose the best path based on the performance condition of your existing egress paths
As for the security, its geo based(so pick what sites you want to apply that security) and includes IPS(snort), Content filtering, AMP via cisco secure formally known as threat grid and best of all the security updates are pushed out as SaaS so you dont need to worry about missing any meraki device not being updated
Good kit all round.
11-10-2021 06:29 AM
ASA replacement with Firepower is good choice.
if you like to choose between Meraki / Fortinet - if you are cisco housem then going with Meraki has advantage.
11-10-2021 06:33 AM
Thx Balaji, We are mostly a Cisco house, Is the advantage because of compatibility or price do you know?
11-10-2021 06:42 AM
Is the advantage because of compatibility or price do you know?
More elaborate this will help us to understand,
11-10-2021 07:28 AM
I was tasked with giving my director 2 solutions, either Meraki SD-Wan or Fortinet SD-Wan
11-10-2021 08:05 AM
Meraki SD-Wan - is reasonable. not sure Fotinet - (worked on FW , not SD-WAN product ?)
11-11-2021 01:06 AM - edited 11-11-2021 01:09 AM
Hello
The meraki MX is a UTM a (security, network, application control), its centrally managed, single gui based dashboard for multiple devices,(UTMs, Switches,APs,,Cameras, etc..) so easy to use, it also supports live troubleshooting(pcaps analytics etc.) from within, A central place for everything.
The SD-WAN function is built into the MX no tricky overlay to work out, it uses your internet BW via ipsec vpns so no expensive WAN MPLS,( lower wan costs but massively increase bandwidth)
The Auto vpn function is very easy, no acls crytpo maps, just two/three clicks and you have site to site connectivity (active/active, active/passive) for load balancing.
It uses dynamic path selection (likes Cisco’s optimised edge routing) so the mx choose the best path based on the performance condition of your existing egress paths
As for the security, its geo based(so pick what sites you want to apply that security) and includes IPS(snort), Content filtering, AMP via cisco secure formally known as threat grid and best of all the security updates are pushed out as SaaS so you dont need to worry about missing any meraki device not being updated
Good kit all round.
11-11-2021 01:58 PM
11-11-2021 01:59 PM
Paul I appreciate the reply - Very good info. i was lost.
Barry
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide