Setting up IPSEC Site-to-Site VPN on Cisco Meraki Security Appliance
Posted by Steve Stoveld, Last modified by Steve Stoveld on 02 August 2017 02:06 PM
First, we need to configure the 3rd party VPN in Meraki. This needs to be done on both Meraki appliances. In the Meraki portal, select the proper network, then navigate to Security Appliance > Site-to-site VPN.
Then click on the link underneath the IPsec policies. If you haven't yet edited the IPsec policies, it should say Default. Otherwise, it should show Custom as it does in the screenshot above.
In the new window that opens up, configure it as follows
All of the above settings MUST match exactly, or the VPN tunnel will fail.
Once the above steps have been completed, please let us know so we can restart the tunnel connection and test to make sure the tunnel is functioning properly. Once we are on the same page, we will need to look at the Meraki Event Log on both Meraki appliances, to make sure that the tunnels have been negotiated successfully.
To bring up the event log in Meraki, navigate to Network-wide > Event log.
Once we're in the event log, we're looking for a successful connection message. It should look something like this:
This is what we want to see. If we are getting other messages under the Non-Meraki / Client VPN negotiation filter, we will need to go back and do some tweaking