Posts Tagged ‘auto vpn’

Powering the remote workforce

In a recent webinar, we discussed the challenging and unique times we live in as workforces around the world move to temporary remote work. While many of us are separated, we are also interconnected via the internet like never before. At Cisco Meraki, we want to help organizations continue doing what they are best at, with minimal discontinuity. Across Cisco, teams are collaborating to help communities work from home and maintain productivity through uncertain times. Working together, this is our global, collective opportunity to unlock human ingenuity and contribute to solving this crisis.

Man sitting at desk with Meraki dashboard on computer

Today’s mission

Around the world, IT managers are undertaking the task of ensuring that hundreds and thousands of users experience a seamless transition to remote work. Critical work is being done at hospitals and on manufacturing floors, demanding the need for employees to stay connected. A sudden disruption of internet access can have a significant impact on an organization, as every second matters, and IT needs to just work. IT leaders want to make sure employees at home have the same simple, secure and reliable network access they get at work. This will enable them to stay connected with each other through collaboration applications such as Webex, and have access to office applications such as Office365, without a glitch. 

With the current state of things, employees have enough to worry about and be distracted by. The last thing a remote worker wants to worry about is the performance of their network connection, or how to configure their VPN. Providing internet access as a remote IT manager is highly challenging as the demand for support has increased with entire workforces working remotely. New ways of working mean that corporate networks are operating in a new way, resulting in new types of trouble tickets. Not to mention the headaches caused by managing the security of hundreds or thousands of remote employee connections.

Built for immediate connectivity

Our mission at Cisco Meraki has become more important than ever as we help IT managers navigate the difficult terrain of a remote work environment. Since our founding, we have supported fast-moving organizations looking to modernize their networks quickly. For those who need help to urgently modify their networks for remote work, Meraki offers an easy and secure option. Meraki devices can be pulled out of the box, plugged in virtually anywhere in the world, and instantly deliver a seamless “in-office” experience at home. With simple Meraki cloud-management, IT managers are able to maintain visibility of employee networks, and continue to monitor potential interference to workforce productivity while at home.

Here are just a few of the tools available to the administrator looking after remote workers:

  • Create a site-to-site VPN in a few clicks over a WAN link
  • Seamlessly and securely provide remote network access via Wi-Fi over an encrypted tunnel
  • Maintain service continuity with cellular backup
  • Keep end-user devices secure when off-network
  • Perform remote troubleshooting of employee connectivity and applications

The Meraki dashboard has also been updated to allow IT admins to quickly identify VPN clients within the organization.

gif of client view on Meraki dashboard

How Cisco Meraki can help

At Cisco, we have been addressing the hurdles of remote work for years, and we want to do anything we can to help others during this unpredictable time. One of the most important things we can do right now is to empower IT managers to keep their organizations working seamlessly. Cisco has multiple offers available to help those in difficult times, such as free Webex, Cisco Security, and more. Meraki support is available 24 hours a day, seven days a week, to help prepare your organization for remote work. If you are looking to learn more about how Meraki can help mobilize your workforce, watch our on-demand webinar.

Additional resources: 

Meraki and Cisco Collaboration Teleworker Solution for Businesses

Meraki SD-WAN, Explained (It’s Kind of a Big Deal)


If you work in the network sector of technology, you will have probably heard the term SD-WAN at least six times in the last 12 months. Unless, of course, you’ve fallen into the pit of loss in the above graphic. In this post, we will build on some of the concepts we introduced in the last blog post to help show why SD-WAN could be kind of a big deal for your business.

The problem is that SD-WAN means different things to different vendors, and sometimes even different things to the same vendor — not to mention all the dedicated hardware, software and licensing needed to run these solutions. The aim of SD-WAN is typically to enable organizations to both save money and service their connectivity requirements more quickly. The cost savings and serviceability are enabled by having  business logic instilled into their WAN.

At Cisco Meraki, we have an SD-WAN solution that is included with the base license (enterprise license) on all Meraki MX SD-WAN and security appliances and requires no extra servers or hardware.  Just plug it in, configure it in the Meraki dashboard, and start saving money, adding value and getting back to the things you’re passionate about.

SD-What now?

SD-WAN is an acronym for Software-Defined Wide Area Network and is a technology that forms the Software-Defined Network (SDN) family of technologies, with another example being Software-Defined Access.  

The wide area bit just means that the sites/networks you are looking to connect aren’t next to or local with one another.  

The software-defined bit means that decisions about how traffic can route between all the sites in the WAN is defined by policy, and its behavior adapts to the condition of the WAN as opposed to having a fixed configuration.  

SD-WAN solutions achieve this through a number features, such as resilience, security, quality of service, application optimization and many more. The Meraki SD-WAN solution uses a unique combination of these technologies to create a solution that is easy to configure, deploy and manage.

If it ain’t broke, don’t fix it

Whilst this is usually very good advice, the innovator’s dilemma also teaches us that if you don’t introduce disruptive technology to an established space, like the WAN, then someone else will! MPLS has seen a lot of innovation, but it would be fair to say that that innovation is for the most part for the service providers running and offering WAN services over the top of MPLS networks.

The simplicity of Meraki SD-WAN means that the power and flexibility is directly in the hands of the customer or service provider. Meaning that without the need for additional devices, services or upgrades, customers can build or benefit from a more cost effective, more available network connectivity that responds to the performance of the underlying links.  

Whilst this sort of preferential routing is available in traditional MPLS networks, it is usually only available at a premium, in a limited class set and to predefined networks or applications. Whereas Meraki SD-WAN combines the layer 7-based application detection that comes as standard across the entire Meraki stack to achieve this in a more succinct fashion.

Why Meraki then?

We often joke that SD-WAN is just policy-based magic sprinkles built on top of Cisco Meraki Auto VPN. However, it uses open, standards-based technology that you have likely already used.  What we are specifically referring to here is a technology originally created within Google, but later open-sourced, that is built into most of their products (e.g. Gmail, Google Drive).  

The MX SD-WAN & security appliances use this technology to infer the latency, jitter and packet loss of virtual paths between 2 MXs, as shown below. These three things together give us the ability to calculate a Mean Opinion Score (MOS), that can be used to score the acceptability of a WAN path for voice traffic.  

This means that one of the policies that comes pre-configured is the ability to choose the virtual path that is best for voice traffic — a quick win for everyone. In the event that the best virtual path for voice changes, the MX will automatically move the flows to the next most appropriate path.

To track applications with different characteristics to voice, you can simply add in a custom performance class that allows you to set a compliant threshold for latency, jitter, packet loss or any combination of the three. This can then be referenced as the criteria for virtual path selection in a single UI policy, as shown below:

Finally, and completely built in to the solution, is the ability to view both how flows are traversing the virtual paths of your network in near real-time and more powerfully historically:


Meraki has been simplifying complex technology for over a decade and SD-WAN is just another example where we’ve sprinkled the Meraki magic to allow organizations to focus on their mission. It’s also worth noting that Meraki has been offering SD-WAN since 2016, making it one of the most established and stable technology platforms in this space.

Thousands of customers globally have already chosen Meraki SD-WAN and thousands more are signing up at a rate of over 3x YoY. Watch our on-demand webinar to see it for yourself.