Implementing and Operationalizing Meraki SD-WAN SASE

The primary audience for this course is as follows:

System Engineers
System Administrators
System Architects
Channel Partners

Module 1: Introduction to Meraki SD-WAN and Meraki Key Concepts

• Meraki Centralized Dashboard
• Meraki key concepts
• Meraki Concentrator Modes
• VPN Topology
• Split Tunnel and Full Tunnel
• Hub and Spoke and VPN Mesh
• Meraki Connection Monitor
• Data Center Redundancy (DC-DC Failover)
• Warm Spare for VPN Concentrators
• Deployment Models:
• Deploying vMX in the Public and Private Cloud

Module 2: Meraki SD-WAN Deployment Models

• Introduction
• Data Center Deployment
• MX Deployment Considerations
• MX Deployment Considerations
• Upstream DC Switching Considerations
• Routing Considerations
• Firewall Considerations
• Branch Deployment
• AutoVPN at the Branch
• Hub and Spoke VPN Deployment
• Hub Priorities and Design considerations
• Meraki Centralized Policies
• DIA traffic steering using Smart Path
• Implementing QoS from the dashboard
• Configuring arbitrary topologies

Module 3: Meraki SD-WAN Security

• Exploring the SD-WAN and Security Dashboard
• Site-to-site VPN Deep Dive
• Client VPN Technologies
• Access control and Splash Page
• NAT and Port Forwarding
• Firewall and Traffic Shaping
• Content Filtering and Threat Protection
• Meraki and Cisco Umbrella Integration

Module 4: Designing and Implementing DNS Security

• Pre-requisite check before integrating Umbrella with Meraki SD-WAN
• Making sure you have the correct licensing
• Platform support check
• Internet Connectivity check
• Walking through the Umbrella Dashboard
• Dashboard Overview
• DNS Policy GUI Overview
• Firewall Policy GUI Overview
• Web Policy GUI Overview
• Umbrella AD/SAML Integration Overview (optional)
• Integrating Cisco Umbrella for DNS Security
• Umbrella API Integration
• Configuring the DNS Encryption Policy
• Excluding the local domains
• Configuring the Security Policy in Meraki
• Implementing the policy at the DIA Sites

Module 5: Meraki MX and Cisco Umbrella SIG IPSEC Tunnels

• Cisco Umbrella SIG Overview
• Phase 1: IPSEC plus Cloud Security
• Licensing requirement for Phase1
• Meraki MX IPSEC integration with Cisco Umbrella
• Enhanced DNS protection with Selective Proxy
• Security Policy: URL Inspection, HTTPS Inspection, Cloud Delivered Firewall, Granular Content Filtering, Non-Web Traffic Security
• Phase 2: SIG Integration with Meraki SD-WAN
• Verification
• Checking the logs on Umbrella Dashboard

Module 6: Troubleshooting Umbrella Integration

• Troubleshooting DNS Security
• API Integration not working
• DNS for local domain failing
• No redirection to Cisco Umbrella for external domains
• Troubleshooting SIG and Firewall
• Making sure the IPSec Tunnels to Umbrella are operational
• Troubleshooting the policies for redirection
• Reviewing logs in Umbrella
• Checking Alarms and Notifications
• Checking Alarms on Meraki Dashboard
• Checking Alarms on Cisco Umbrella
• Leveraging Meraki Insights for
• Network Visibility
• Traffic Analytics using DPI
• Faster Resolution