Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hey folks,I have Meraki Auto VPN for connectivity with a hub MX (#1 HQ) and multiple spokes MX (#2 and #3) in different networks which works OK.I have also setup IPSec VPN peer to a 3rd party FW (#4) configured with peer availability on the spoke MX ...
Anyone part of the AnyConnect certificate-only authentication beta who can share their experiences?We're on the waiting list, but would like to hear if it's working OK for folks and how the AnyConnect behavior is for the end user.Does it support Star...
Hi, is it possible to hide the actual AnyConnect/Secure Client window (or keep it in the system tray) when it is connecting?We have set up SAML SSO, minimize on connect, auto reconnect and automatic vpn policy so it is pretty seamless, however it wou...
I am considering another option:3. On hub MX, set "VPN mode: Disabled" on all subnets for hub MX. This will remove them from the Auto VPN so we avoid routing issues with the non-Meraki IPSec VPN peer. This is also easy to rollback and just requires s...
Thank you very much @JamesT91 for the explanation and workarounds!Not really what I wanted to hear though.1. I don't think that will work because of the routes as the VPNs will have same subnets on the non-Meraki peer VPN as the AutoVPN.2. We want a ...
We are running into an issue that seemed to show up on firmware 18.211.2.L3 firewall outbound allow rules with FQDN in destination seems to now only hit sometimes and mostly skip the allow rule.The new Firewall Log confirms this showing it is hitting...
Hi @JamesPickup, yes, we got access to the beta and it works pretty well.I am a bit dissappointed in the AnyConnect (Secure Client) VPN client but that I guess that's not Meraki's fault.It doesn't seem to be possible to configure it to stay hidden at...
@Philip D'Ath wrote:>How do you usually handle these requirements?Most of the customers gave up on the capability of having SBL to meet their compliance requirements. One client - they had me setup AnyConnect on a second MX that used simple username...
