Cisco Meraki
This guide will show you how to connect your Cisco Meraki device to the GoodAccess Gateway via a site-to-site connection using the IPsec protocol.
Step 1 - Creating a new branch connection
Log in to the GoodAccess Control Panel, and go to Network > Clouds & Branches.
Click + Add new, enter the Branch name and subnet, and select Gateway.
Choose IPSec Protocol, fill out the Settings configuration form, and click Save.
Step 2 - Creating a new site-to-site connection
Log in to the Cisco Meraki Admin console, and go to Security & SD WAN > Site-to-site VPN.
Scroll down to the Organization-wide settings > Non-Meraki VPN peers, and click Add a peer.
Give the peer a name and set the configuration as follows:
IKE version - IKEv2
Public IP - IP of your GoodAccess Gateway
Private subnets - Subnet of your GoodAccess Gateway
Preshared secret - Shared Secret (Step 1)
IPsec policies - Click Default and set the configuration as follows:
Phase 1
Encryption - AES256
Authentication - SHA256
Diffie-Hellman group - 14
Lifetime (seconds) - 28800
Phase 2
Encryption - AES256
Authentication - SHA256
PFS group - 14
Lifetime (seconds) - 3600
Click Update, and Save to finish the configuration.
You have now successfully connected your device to GoodAccess.
Firewall rules
Make sure that your device allows incoming connections from your GoodAccess Gateway private subnet on the following ports:
UDP 500
UDP 4500
Last updated
Was this helpful?