DATASHEET

Meraki Teleworker VPN

Secure Remote Access
Secure Remote Access
Meraki Teleworker VPN makes it easy to extend the corporate LAN to
remote sites, without requiring all clients and devices to have client VPN
software. Workers in small branches, home offices or on the road can
securely connect to the corporate email server, file shares and central PBX
as if at headquarters, while still being able to access local resources such
as printers and share drives.

Key Benefits:
• Secure office network experience from any location
• Scales to 1,000’s of remote sites
• Security policy enforcement at the network edge
• Zero AP pre-configuration required
• Works with all Meraki MR-series access points
• Included with the Meraki Enterprise license

10 Minute Set-Up Stay Connected with Voice and Data

With Meraki Teleworker VPN there is no need to pre-provision access The company PBX system can now be extended to remote sites,
points. When a new remote site needs to be set up, simply create a allowing administrators to monitor and manage the entire remote
remote network in the Meraki Dashboard, add access points, identify office infrastructure. Plug IP phones directly into Meraki access
the SSIDs that will be tunneled and you’re done. Then just ship the points or use wireless phones and they’ll seamlessly connect to
access point to the remote site for the user to plug into their cable or the PBX at headquarters over the VPN tunnel. Users can now take
DSL modem. No access point or user-side configuration is necessary, advantage of the company phone system from remote sites and
making installation simple enough for a non-technical user. enjoy high-quality voice with WMM and 802.1q QoS.

HQ Network Experience From Anywhere

Virtual, Cloud-Managed Concentrator
Remote APs automatically establish a persistent, secure Layer 2 IPSec
Quickly turn any commodity-grade server into a virtual concentrator
tunnel back to a Meraki virtual concentrator running on a server at
by downloading a virtual machine image directly from the Enterprise
headquarters. This provides the same experience to users as though
Cloud Controller. The concentrator can then be managed over the
they were sitting at a desk at headquarters. They can discover file
Internet in Dashboard, just like other Meraki networking hardware.
shares and access in-house enterprise applications without the hassle
The VM’s resources can be easily scaled to meet your needs by
of installing and running client VPN software.
scaling up with additional hardware resources or by scaling out by
adding additional concentrators or physical machines.
No Additional Hardware Required
Meraki wireless networks have already eliminated the need for a wireless
Centralized Management
LAN controller at headquarters. Now, integration of site-to-site VPN
The Meraki’s award-winning Enterprise Cloud Controller enables
functionality into the access point, combined with the built-in stateful
administrators to manage and monitor 1,000’s of remote locations
firewall and a virtual concentrator, further reduces the number of
from a single pane of glass. Problems can be diagnosed remotely
hardware appliances needed in the home or branch office. In addition
using the Enterprise Cloud Controller’s built-in, real-time diagnostics
to saving money on hardware, this reduces the complexity of the branch
tools. Even the smallest IT staff can be empowered to manage large
environment, resulting in fewer failure points and calls to IT.
distributed networks over the Internet from anywhere.

Meraki, | 99| Rhode

Meraki, Inc.Inc. 660 Alabama St.,Floor,
Island St. 2 nd SanSan
Francisco, CA94103
Francisco, CA | 415.632.5800
94110| 415.632. | www.meraki.com
5800 | www.meraki.com
 Recommended Use Cases
Small Branch Offices (< 5 persons)
• Provide a secure corporate network experience to branch workers with minimal IT setup
• IT administrators can fully support the branch wireless network remotely
• Eliminate costly and complex on-site VPN hardware, software and leased lines

Teleworker / Executive Home Office

• Allow IT administrators to easily support home networks from a central location
• Extend corporate IP phone systems to home offices with high-quality voice
• Secure corporate LAN access while allowing access to local printers
• Guests and family members can access the Internet on a separate SSID

Temporary Sites
• Set up a temporary network in minutes at events, conferences and seminars
• Provide secure employee access to the LAN and guest access for customers and partners

Road Warrior
• Make it easy for executives, field salespeople, and others to have an in-office network experience while on the road

Meraki, | 99| Rhode

Meraki, Inc.Inc. 660 Alabama St.,Floor,
Island St. 2 nd SanSan
Francisco, CA94103
Francisco, CA | 415.632.5800
94110| 415.632. | www.meraki.com
5800 | www.meraki.com
 Specifications
> VPN Tunnel
• Layer 2 connectivity between Meraki APs and the virtual concentrator
• IPsec standards-based encryption
• Tunnel both wireless and wired connections
• Multi-tunnel support - Up to 15 tunnels per AP for sophisticated
deployments

> Authentication Methods

• WPA2-Enterprise (802.1x)
• WPA2-Personal
• Captive Portal

> Security
• Stateful policy firewall in AP provides corporate security policy
enforcement at network edge
• Personal, Internet-only SSID for non-corporate devices and users
• Integrates with Meraki Network Access Control to check for endpoint
compliance with corporate anti-virus policies

> Additional Features

• QoS for VoIP (WMM, 802.1q)
• No pre-configuration of access points required
• Works on a public IP or behind a NAT
• Integrates with Meraki Traffic Shaper for application-aware bandwidth
shaping to avoid uplink bandwidth saturation

> Split Tunneling*

• Policy-based forwarding for VPN, local and Internet traffic
• Increase Internet site performance
• Print on a home network while accessing corporate resources
• Wired ports can be designated VPN or local

> Virtual Concentrator

• Up to 1,000 remote APs per concentrator
• Up to 250 Mbps throughput of VPN traffic per concentrator
• Downloads directly from Enterprise Cloud Controller
• Runs in VMware vSphere Hypervisor (ESXi), Player or Workstation
• Hardware requirements for host server:
1 GHz minimum processor speed
1 GB available hard drive space
500 MB dedicated RAM

> Access Point Compatibility

• Compatible with all MR-series access points

> Ordering Information

• Included with Meraki Enterprise Cloud Controller license
• No additional hardware necessary

* Available Q3 2011

Meraki, | 99| Rhode

Meraki, Inc.Inc. 660 Alabama St.,Floor,
Island St. 2 nd SanSan
Francisco, CA94103
Francisco, CA | 415.632.5800
94110| 415.632. | www.meraki.com
5800 | www.meraki.com