Update: this is what I ended up with.
Route based VPN using this guide as a template.
Master site: 1x ER 12 + 1x ER 4
Sites A, B, C & D :1x ER4 each location
Colo: 1x ER4 & 1x pfSense (SM x10SDV-TLN4F+)
@FATeknollogee said in Edgerouter experts: UNMS to gui:
@JaredBusch said in Edgerouter experts: UNMS to gui:
No. Why would you want that anyway? You have the terminal already. If you really need the GUI, drop a quick allow in the firewall rules for your current public IP.
I like to have access to the GUI, I thought there was some "backdoor" way through UNMS.
The firewall rule is good enough, thanks.
It provides access to the CLI, but not to the GUI. If you want GUI access in that way, the trick is to make a remote proxy (a la Nginx) and do it that way, no need for UNMS.
The problem is this:
On the Meraki side, let's say you have 5 (this can be any number greater than 1) firewalls.
In Meraki speak, if all 5 are in the same "organization", S2S is a few clicks & AutoVPN takes over. No pre-shared secret, no keys.
You turn on VPN, say yes to whatever subnets you want in the vpn & save.
On the ER side, I have to create 5 peers to connect to the Meraki side.
Meraki will only expose one connection for a 3rd party S2S & therein lies the problem.
Not all the tunnels connect & there's no good way to fix it.