Cisco Meraki MX Firewalls is a combined UTM and Software-Defined WAN solution. Meraki is managed via the cloud, and provides core firewall services, including site-to-site VPN, plus network monitoring.
$595
per appliance
HPE Aruba Networking EdgeConnect SD-WAN
Score 6.4 out of 10
N/A
The HPE Aruba Networking EdgeConnect SD-WAN platform addresses the challenges associated with backhauling cloud-destined traffic to the data center, thereby reducing the cost of bandwidth connectivity from the data center to cloud providers.
We were able to transition very easily from Cisco to Cisco Meraki MX's and connect the LANs into a single easy to manage WAN with remote access VPN and auto VPN between branches to interconnect all networks with minimal fuss but allowing high-speed networking and traffic …
The Meraki MX lineup is well suited for organizations that need centralized management of multiple locations, as it allows for both quick deployment and simple/easy remote administration all from a single pane of glass. It also works very well for providing VPN access for remote workers and helps monitor end-device uptime. It does, however, fall a bit short in its firewall's customization, compared to traditional appliances (like our WatchGuard Firebox), so perhaps less suited for organizations that need more customization, as the Meraki MX lineup is primarily designed for simplicity and straightforward cloud-based management.
The HPE Aruba Networking EdgeConnect SD-WAN excel in environments where you do a lot of your East - West segmentation is done by another device. While these devices can do basic firewall functions, it's their not true intent. If you can group what you want your traffic to do into a few basic groups, this product will work great (think all Guest Traffic gets low priority and sent directly to the internet, VoIP gets sent directly out but high priority, and most internal traffic gets medium throughput). There are ways to really tinker reach the desired goals but this can be a double-edged sword of those configurations being forgotten about. There is also the use of templating which if you have a larger environment, this product will make some normal configs (think SNMP) more streamlined. The units are also highly reliable, built with HA in mind - our company has only experienced a single version that had a memory leak that we just needed to remember to reboot every 90 days while we waited for the next update (which came in like 4 months).
The Cisco Meraki MX series is phenomenal at allowing us to remotely manage networks. So the devices usually act as the brain behind our client's networks, which makes it really, really easy for our team to take a look at what's going on in those client network environments, resolve any issues, and make sure that our client's networks are staying secure.
Layer seven firewall rules. Just making them more granular. We've been in meetings with Cisco SES where I've said feature requests many times and that's one of the big ones where it's just a little cumbersome to implement layer seven rules right now.
Just making them more granular. We've been in meetings with Cisco SES where I've said feature requests many times and that's one of the big ones where it's just a little cumbersome to implement layer seven rules right now.
The simplicity and ease of use for the Meraki Dashboard make it an easy choice for our organization to renew our Meraki Enterprise Agreement. We will likely continue using the Meraki MC67-C, MX450, and other MX models in their catalog until we shift away from Meraki completely
Some features simply aren't there, but the ones that are there are pretty easy to use. Sometimes it is easy to get lost when trying to find the specific device you want to work on, but that's mostly due to how rarely we have to go into the interface.
The product and its management as a whole are worth investigating for any kind of people interested in looking at new SD-WAN appliances. The devices possess a lot of capability for granularity which makes them much more advanced than other products I've worked with in the past. Ironically, for all the granularity though, this product is held back that you can ultimately only have 7 different policies for routing decisions. We've ran into instances where we wanted two sites to only share certain routes between each other (through the use of tags which are basically an arbitrary way to say this traffic is special) but then we had to collapse some of our routing decisions in order to make a specific route table for these two to be able which felt like a step back in the advanced routing decisions we had previously made
Meraki MX devices support high availability (HA) configurations, which ensures minimal downtime if one device goes offline. This feature has helped us maintain a stable and reliable network, even in cases of hardware failures. ince Meraki is cloud-managed, we've noticed that the cloud infrastructure is generally highly reliable, with minimal service interruptions or downtime. This makes it easier to manage the network remotely without significant availability concerns. Meraki automatically pushes firmware updates and patches, which helps maintain system stability without requiring manual intervention. These updates are rolled out in a manner that ensures minimal disruption to service.
The interface is pretty responsive. The lower end devices are easy to overwhelm if you have a lot of throughput. Be sure the model you get is rated for the amount of traffic you will have. Overbuild if possible, otherwise you won't be fully leveraging the connection from your ISP.
I haven't ever had a bad experience with Meraki support. On the few occasions where I wasn't understanding the UI or needed some clarification about what a setting actually would do, I contacted them and they were very quickly able to provide help. Returns are simple and fast, too. We had to return a defective device one time and they shipped the replacement before we had even un-racked the one that was faulty. Unlike many other vendors, they didn't ask use to a do long list of scripted diagnostics, they just took my word for it that the device was broken and sent out a replacement immediately
great when they offered it, really tested your knowledge with hands on and see what your peers from other orgs know. glad to see that we were ahead of the curve of what our peers knew
Implementing Meraki MX devices in phases—starting with a pilot group or select branch offices—was invaluable. This allowed us to identify potential configuration issues, troubleshoot problems, and refine our setup before rolling it out company-wide. It also helped to get feedback from early users and adjust the deployment strategy accordingly. The SD-WAN capabilities in Meraki MX were essential for optimizing our WAN traffic and ensuring better application performance across various locations.
Cisco Meraki MX provides simplicity and scalability while cutting costs. With Meraki MX, you get a Security appliance, router, and Firewall in one appliance and managed with one GUI. These features enable the network engineers to maintain large-scale enterprises with a single dashboard from a remote site or anywhere with internet, all thanks to the Meraki cloud dashboard
Prisma SD-WAN is a very simple solution to configure and maintain (so much to the point that in that environment, I questioned if my skills as a Network Engineer were needed). However it worked almost primarily on its own with very little input, by default and at the time of review had no way to do fully mesh (which was desired), and constantly suffered from memory leak. Its integrations were through the use of obscure tags and suffered from a "when it works - it works but when it doesn't - it doesn't and you don't know why" mentality. In contrast, HPE Aruba Networking EdgeConnect SD-WAN gives you a lot of insight into what is going on with the site, the integrations are done easily within Orchestrator (the control plane), and ultimately the product is typically a very stable product with many ways to configure and tweak the solution to fit your business needs.
When I first started with my company we had various infrastructure and a mix of tech. Since going to Cisco Meraki MX we have noticed better network performance and our new sites are much easier to bring online. Users have noticed an improvement in VPN connection and getting into all our systems.
From a positive impact? Basically it allows us to set up shop very quickly. It allowed us to add sites to our network very quickly. From a negative perspective, I think the only thing is that I can see from a negative perspective is I have a preference to working with ACLI in terms of how I engage with the youth tool At the moment, the only way to actually engage with a tool is on a gui and sometimes what I'd actually like is more detailed information in terms of actual configuration that you'll actually get out of ACLI.
