Implementing and Operationalizing Meraki SD-WAN SASE
- Course Code N1_MESASE
- Duration 3 days
Course Delivery
Additional Payment Options
- CLC Please Call 0118 912 1929 excl. VAT
Course Delivery
This course is available in the following formats:
-
Company Event
Event at company
-
Virtual Learning
Learning that is virtual
Request this course in a different delivery format.
Course Overview
TopVirtual Learning
This interactive training can be taken from any location, your office or home and is delivered by a trainer. This training does not have any delegates in the class with the instructor, since all delegates are virtually connected. Virtual delegates do not travel to this course, Global Knowledge will send you all the information needed before the start of the course and you can test the logins.
Course Schedule
TopTarget Audience
TopThe primary audience for this course is as follows:
System Engineers
System Administrators
System Architects
Channel Partners
Course Content
TopModule 1: Introduction to Meraki SD-WAN and Meraki Key Concepts
- Meraki Centralized Dashboard
- Meraki key concepts
- Meraki Concentrator Modes
- VPN Topology
- Split Tunnel and Full Tunnel
- Hub and Spoke and VPN Mesh
- Meraki Connection Monitor
- Data Center Redundancy (DC-DC Failover)
- Warm Spare for VPN Concentrators
- Deployment Models:
- Deploying vMX in the Public and Private Cloud
Module 2: Meraki SD-WAN Deployment Models
- Introduction
- Data Center Deployment
- MX Deployment Considerations
- MX Deployment Considerations
- Upstream DC Switching Considerations
- Routing Considerations
- Firewall Considerations
- Branch Deployment
- AutoVPN at the Branch
- Hub and Spoke VPN Deployment
- Hub Priorities and Design considerations
- Meraki Centralized Policies
- DIA traffic steering using Smart Path
- Implementing QoS from the dashboard
- Configuring arbitrary topologies
Module 3: Meraki SD-WAN Security
- Exploring the SD-WAN and Security Dashboard
- Site-to-site VPN Deep Dive
- Client VPN Technologies
- Access control and Splash Page
- NAT and Port Forwarding
- Firewall and Traffic Shaping
- Content Filtering and Threat Protection
- Meraki and Cisco Umbrella Integration
Module 4: Designing and Implementing DNS Security
- Pre-requisite check before integrating Umbrella with Meraki SD-WAN
- Making sure you have the correct licensing
- Platform support check
- Internet Connectivity check
- Walking through the Umbrella Dashboard
- Dashboard Overview
- DNS Policy GUI Overview
- Firewall Policy GUI Overview
- Web Policy GUI Overview
- Umbrella AD/SAML Integration Overview (optional)
- Integrating Cisco Umbrella for DNS Security
- Umbrella API Integration
- Configuring the DNS Encryption Policy
- Excluding the local domains
- Configuring the Security Policy in Meraki
- Implementing the policy at the DIA Sites
Module 5: Meraki MX and Cisco Umbrella SIG IPSEC Tunnels
- Cisco Umbrella SIG Overview
- Phase 1: IPSEC plus Cloud Security
- Licensing requirement for Phase1
- Meraki MX IPSEC integration with Cisco Umbrella
- Enhanced DNS protection with Selective Proxy
- Security Policy: URL Inspection, HTTPS Inspection, Cloud Delivered Firewall, Granular Content Filtering, Non-Web Traffic Security
- Phase 2: SIG Integration with Meraki SD-WAN
- Verification
- Checking the logs on Umbrella Dashboard
Module 6: Troubleshooting Umbrella Integration
- Troubleshooting DNS Security
- API Integration not working
- DNS for local domain failing
- No redirection to Cisco Umbrella for external domains
- Troubleshooting SIG and Firewall
- Making sure the IPSec Tunnels to Umbrella are operational
- Troubleshooting the policies for redirection
- Reviewing logs in Umbrella
- Checking Alarms and Notifications
- Checking Alarms on Meraki Dashboard
- Checking Alarms on Cisco Umbrella
- Leveraging Meraki Insights for
- Network Visibility
- Traffic Analytics using DPI
- Faster Resolution