CloudConnexa: Connect Cisco Meraki to CloudConnexa Using IPSec Tunneling

Description: You can securely connect your Cisco Meraki network to CloudConnexa using the IPSec tunneling protocol to access CloudConnexa resources.

Prerequisites

• A Cisco Meraki device with IPSec VPN capability.
• Access to your CloudConnexa account.
• Administrator permissions to configure networks and routing on both systems.

Step 1: Set up an IPSec connector in CloudConnexa

1. Sign in to CloudConnexa.
2. Click Networks > Networks.
3. Click Add Network and choose Remote Access > Continue.
   
4. Enter a name for your network.
5. Select IPSec for the tunneling protocol.
6. Choose the Region closest to your Cisco Meraki resources.
7. Click Next.
   
8. For Platform to Connect, choose Other.
   

CloudConnexa will now generate IPSec parameters that you'll use to configure your Cisco Meraki.

Step 2: Configure the Cisco Meraki device

Use the IPSec configuration values provided by CloudConnexa to complete the following on your Cisco Meraki dashboard:

Cisco Meraki Configuration:

Cisco Meraki Phase 1 (IKE Policy):

Cisco Meraki Phase 2 (IPSec Policy):

Step 3: Add static routes in Cisco Meraki

You must define routes on the Cisco Meraki device to allow traffic to the CloudConnexa WPC.

Add the following static routes (default values shown):

• CloudConnexa WPC Subnet: 100.96.0.0/11
• Domain Routing Subnet: 100.80.0.0/12

Those routes ensure traffic destined for CloudConnexa-connected resources is routed over the IPSec tunnel.

Final Notes

• Ensure both tunnel sides use matching Phase 1 and Phase 2 parameters.
• Once the tunnel is established, verify connectivity by pinging internal resources or using traceroute from each side.
• If the tunnel fails to establish, check firewall rules, NAT traversal settings, and logs in both the Cisco Meraki dashboard and CloudConnexa.