Site to Site VPN
Location in Dashboard: Security and SD-WAN >> Configure >> Site-to-site VPN
Diagram
Classes
appliance (meraki.domains.organizations.networks)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| vpn_site_to_site_vpn | Class | [vpn_site_to_site_vpn] | No |
vpn_site_to_site_vpn (meraki.domains.organizations.networks.appliance)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| mode | Choice | hub, none, spoke | Yes | |
| hubs | List | [hubs] | No | |
| subnets | List | [subnets] | No | |
| subnet_nat | Boolean | true, false | No |
hubs (meraki.domains.organizations.networks.appliance.vpn_site_to_site_vpn)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| use_default_route | Boolean | true, false | No | |
| hub_network_name | String | min: 1, max: 127 | Yes |
subnets (meraki.domains.organizations.networks.appliance.vpn_site_to_site_vpn)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| local_subnet | String | Regex: ^(?i:any|(\d{1,3}\.){3}\d{1,3}(\/\d{1,2})?)(,(any|(\d{1,3}\.){3}\d{1,3}(\/\d{1,2})?))*$ | Yes | |
| use_vpn | Boolean | true, false | No | |
| nat | Class | [nat] | No |
nat (meraki.domains.organizations.networks.appliance.vpn_site_to_site_vpn.subnets)
| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| enabled | Boolean | true, false | No | |
| remote_subnet | String | No |
Config Sample
meraki:
domains:
- name: EMEA
administrator:
name: Foo Bar
organizations:
- name: Dev
networks:
- name: Dev-main-cx-provider
product_types:
- appliance
- camera
- switch
- wireless
appliance:
vpn_site_to_site_vpn:
mode: hub
hubs:
# - hub_network_name: Dev-main-test-site
# use_default_route: true
subnets:
- local_subnet: "192.168.20.0/24"
use_vpn: true