07-07-2023 09:04 AM - edited 07-07-2023 09:06 AM
Hello,
I'm working on a project for a customer who has ASA firewalls at headquarters and remote sites with Internet access.
The sites doesn't have a fixed public IP address, can't set up IPsec with the firewalls at headquarters, so he's using the proprietary Cisco EZ VPN protocol (which is enf of life).
my question is, if we propose a sdwan meraki solution, can we set up VPN tunnels even if we don't have fixed IP addresses on the remote sites?
thanks for your help
07-07-2023 09:57 AM - edited 07-07-2023 09:59 AM
If initiating the site to site tunnels only from the branches towards the HQ ASA would be an acceptable solution, then I think you can do something like this:
07-07-2023 10:00 AM
hello @Aref Alsouqi ,
Thanks for your reply, but I don't have ASA on the remote sites. I only have a Cisco 800 router.
07-07-2023 10:07 AM
ASA and Router
Best solution is flexvpn.
But can you elaborate more about sd-wan.
Thanks
07-07-2023 10:27 AM
You are welcome. You can still do the same with the routers. On the ASA you configure the site to site as per the link I shared in the static peer section, and on the routers you configure the site to site tunnels as normal, that should work.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide