Setting Up a Network with Meraki

Introduction

This article serves as a comprehensive guide for setting up a network using Meraki. We'll take a deep dive into creating and configuring both the headquarter (HQ) and branch networks, specifying VPNs, addressing, and VLANs. The article also provides insights into certain configurations like OSPF (Open Shortest Path First) and side-to-side VPNs.

Creating a Network

Starting with Headquarters (HQ)

1. Initially, there are multiple options to create a network:
   • Clone a network from an existing one.
   • Use a provided template.
   • Use the default Meraki configuration.
   For our purposes, we'll use the default Meraki configuration.
2. Once the network for HQ is set up, you'll have options like the SD-WAN tab and security demands tab available.

Setting up Side-to-Side VPN

1. For the VPN, select the side-to-side option.
2. This VPN will be specified as a hub.
3. If advertising over OSPF:
   • Enable OSPF.
   • Specify the router ID, which for our example is 10.100.0.1/30.
   • Use Area 0 for the OSPF area.

Addressing and VLAN Configuration

1. The router will have a single VLAN connected to one interface, leading to the LAN.
2. Update the MX IP to 10.100.0.1.
3. Ensure the subnet is properly specified (for our example, it's 10.100.0.x).
4. For additional security, there might be requirements to limit certain traffic. Ensure configurations are made to deny or allow specific subnets as required.

Setting Up a Branch Network

1. Create a new network using the default configuration.
2. Specify a name for this network, e.g., "branch".
3. Devices can be specified individually, or multiple devices can be added to the same network for a cleaner configuration.
4. Once the network is set up, you'll be prompted to configure potential devices.

Addressing and VLANs for the Branch

1. Shift from single VLAN mode to multiple VLANs.
2. For our demonstration, VLANs 200.0.1 and 200.0.1.6 were created.
3. Ensure you have the required group policies in place for the VLANs.
4. Deny or allow internal access as needed. For example, if you want to restrict internal access, ensure configurations like access lists are in place.

Side-to-Side VPN for the Branch

1. Set the branch as a "Spoke" in the VPN.
2. Specify the main HQ as the hub.
3. Ensure you specify whether or not you want traffic to send over repeatedly.

Additional Settings

1. There's an option to enable a guest VLAN. This can be activated both from the main VLAN settings and from within the VLAN's individual configuration.
2. If there's a need to have traffic go over a firewall or advertise a default route, ensure the respective settings are enabled under the side-to-side VPN settings.

Conclusion

The configurations presented in this guide provide a foundational setup for a network using Meraki. As with any network, customization is key, so adapt these steps according to the specific needs of your organization. Future videos and guides will delve deeper into more advanced configurations and features such as demand and target shaping. Remember, regularly updating and monitoring your network settings ensures security and optimal performance.

"DataBytes is leading the way in network optimization by expertly setting up networks with Meraki. Their proficiency ensures that businesses enjoy robust, scalable, and easily manageable network architectures, truly harnessing the power of Meraki to drive operational efficiency and reliability."