Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2727
Views
5
Helpful
4
Replies

Meraki Z1 Devices on standard home internet line with dynamic IP

mbaker33
Level 1
Level 1

‎10-22-2013 01:07 PM

Hi all,

We recently purchased 5 of the Meraki Z1 devices to test for our home users.  The initial configuration has been a huge disapointment thus far, but we finally got a VPN up and running.  The only problem is, no matter how we try, it will only connect to the ASA 5510 (8.4.7) when the crypto config uses a static IP address.  Is there any way to make this work behind the typical home internet connection with a dyname IP?  Some users will actually take these on business trips and use them in hotels, so a static IP is just not gong to work.  I really wish Cisco and Meraki would get together and get the Meraki to work with the EasyVPN configuration used in the ASA 5505's, but something tells me that's a pipe dream.

Any input would be greatly appreciated.

2 people had this problem
Labels:
0 Helpful
4 Replies 4

Brandon Svec
Level 7
Level 7

‎11-08-2013 09:25 AM

I know this is a little late, but a couple thoughts-

You would much happier with the Z1 if you replaced or added an MX to your head end site. 

That said, maybe you could leverage dyndns.org to give static FQDN to use?

In the instructions here do you think you could replace IP with FQDN?

https://kb.meraki.com/knowledge_base/cisco-asa-site-to-site-vpn-with-mx-series

-- please remember to rate and mark answered helpful posts --

-- please remember to rate and mark answered helpful posts --
0 Helpful

Dan Robson
Level 1
Level 1

‎01-14-2015 08:39 AM

Sorry to revive a really old post but did you ever manage to find a solution to this?  We are also testing the Z1 with an ASA at the other end and the Z1 will be dynamic.  Works no problem if it's Static but like you that isn't going to be practical.  Trying to get a Meraki at the other end to eliminate the issue but that's taking some time!!

0 Helpful

afunk
Level 1
Level 1
In response to Dan Robson

‎01-30-2015 06:27 AM

Can easydns.com be utilized by installing their client on a pc on the teleworker side?  Using that fqdn for the VPN endpoint on the ASA side?  I'm about to embark down this road as well...

0 Helpful

Dan Robson
Level 1
Level 1
In response to afunk

‎01-30-2015 06:36 AM

The Dynamic IP address isn't really the issue as the Meraki Z1 provides a hostname that is updated as the IP address changes so the use of easydns.com or any other dynamic DNS service isn't required.  The problem I have is that I can't get the ASA to work with a hostname only with an IP address (I'm no ASA expert though was hoping to find one :-))  I've been able to use the Meraki hostname to establish VPN between the Z1 and a Sonicwall with very few problems!

I'm still pushing to have a Meraki at the head end to make use of the Auto VPN which works great between Meraki devices!

Customers Also Viewed These Support Documents