This article answers some frequently asked questions regarding Meraki MX Security Appliances.
Yes, the appliance will continue to operate on the last known good configuration and enforce all configured security policies. While disconnected from the Cisco Meraki cloud, configuration changes are limited to basic uplink and port settings accessible on the local status page until such time as the appliance reconnects to the cloud. Analytics and reporting data will also still be gathered while disconnected and will be available when connectivity is regained.
Yes, Active/Passive HA is supported for all MX models.
Yes, the MX supports standard IPsec VPN in addition to Meraki Auto VPN.
No. In most cases, MX Security Appliances will automatically discover each other and form VPN tunnels even when behind a NAT device.
Yes, the MX includes a suite of best-in-class Cisco Security technologies such as Advanced Malware Protection, Threat Grid integration, Stealthwatch integration, Cisco Snort IPS.
Yes, native Active Directory integration is supported and policies can be applied to clients based on Active Directory group membership.
The Enterprise license includes all base functionality, including but not limited to:
The Advanced Security license includes all Enterprise license features, plus the following advanced threat management capabilities:
All Cisco Meraki licenses include warranty, 24x7 Enterprise support, software and feature updates, and cloud dashboard access.