About Warren-G

Warren-G · 12-19-2025

We have a client with multiple sites that are connected together using the site-to-site VPN. Users in the remote offices are still also using the client VPN (AnyConnect) in order to connect to the main office, which we suspect may be causing network ...

Warren-G · 05-15-2024

For the life of me I can't figure this one out. Looking to purchase an MS130-24P switch and trying to figure out what license I need to purchase to go with it. The CCW portal has two possible options, but neither of them seem to be a perfect fit:LIC-...

Warren-G · 03-13-2024

Is it possible to use Duo to require MFA for Meraki Cloud Authenticated users while using Meraki Client VPN? Specifically we need to use the AnyConnect option with Meraki Cloud Authenticated users, but need to be able to protect that connection furth...

Warren-G · 01-19-2024

So with all the power and Internet outages we've had recently due to weather, we have identified our own office Internet connection as a potential single point of failure. We have all our client's Meraki dashboard portals locked down to only be avail...

Warren-G · 03-16-2023

So we have set up AnyConnect to authenticate via SAML with Azure AD for client VPN authentication. We asked the Meraki support to turn off the force authentication option because it makes the users have to type in their full email address and passwor...

Warren-G · 12-21-2025

Thanks. What I ended up doing was to create a conditional access policy in M365 to block the AnyConnect VPN connections if they were coming from the static IP of either of the remote offices. Seemed like that was probably the simplest option, but we'...

Warren-G · 12-19-2025

Got it, I was looking under client VPN but this makes more sense. Thanks!

Warren-G · 12-19-2025

Thanks, can you clarify what you mean by the "vpn firewall" - I only see the L3 firewall in the portal. How would I access this vpn firewall that you are referring to? Thanks!

Warren-G · 01-18-2025

Yep, we use the two factor authentication that's built into Microsoft 365. You should have MFA enabled for all your users already, but you can also add it as specific requirement for the VPN connections via a conditional access policy that targets th...

Warren-G · 01-18-2025

The link below should be helpful if that's the way you plan to go. It's pretty slick once you have it up and running https://documentation.meraki.com/MX/Client_VPN/AnyConnect_on_the_MX_Appliance/AnyConnect_Azure_AD_SAML_Configuration

Member Since	‎10-21-2021 07:06 PM
Date Last Visited	‎07-15-2023 02:13 AM
Posts	49
Total Helpful Votes Received	15

User Statistics

User Activity

Block client VPN over site-to-site VPN tunnel

MS130 switch licensing

Duo MFA for Meraki Cloud Authenticated users?

Access Meraki dashboard from FQDN

How to require MFA every time for AnyConnect with Azure AD?

Re: Block client VPN over site-to-site VPN tunnel

Re: Block client VPN over site-to-site VPN tunnel

Re: Block client VPN over site-to-site VPN tunnel

Re: Duo MFA for Meraki Cloud Authenticated users?

Re: Duo MFA for Meraki Cloud Authenticated users?