Cisco Is Keeping Secrets

If HTTPS Inspection is important to you, Cisco Meraki misses the mark. Their long-promised Beta of HTTPS Inspection for the Meraki MX has arrived and doesn’t even support the latest Transport Layer Security (TLS) standard, 1.3. And, there is a good chance it never will…

With TLS 1.3 adoption growing by 30% year over year, implementing a HTTPS inspection solution without it would be a waste of time! (Source: CA Security Council (CASC) 2019 Predictions)

According to Cisco Meraki...

HTTPS inspection on the security appliance relies on TLS 1.2. Changes to how keys are handled in TLS 1.3 mean that services that only allow TLS 1.3 will not work properly. Layer 3 and 7 whitelist rules should be used to disable HTTPS inspection in such circumstances."

Why is Cisco Meraki skipping firewall security tests?

Pssst… because they wouldn’t do well.

Cisco Meraki didn’t submit to the NSS Labs testing since they knew they would fail.

NSS Labs report screenshot with a red circle around WatchGuard M670

NSS Labs Results

The Cisco Meraki MX84 does not support HTTPS, indicated by N/A.
- Miercom

Miercom report showing the WatchGuard M270

Read Full Miercom Report

What do Cisco Meraki customers say when they learn the truth?

Don't just take our word for it! Read the Meraki Community Board discussion on HTTPS decryption:

Meraki Board Comment Screenshot

Meraki Board Comment Screenshot

Meraki Board Comment Screenshot

Read More >

Cisco Meraki is a networking company, not a security company!

Cisco Meraki is not set up to support HTTPS inspection with the performance and security that WatchGuard can offer.

What to expect if Cisco Meraki was to add HTTPS inspection?

  • NO support for the latest TLS 1.3 standard
  • 80-95% decline in performance

Find out why TLS 1.3 inspection is crucial!

“WatchGuard is not Cisco trying to be 18 different things, or Dell trying to be 38 different things. WatchGuard knows security—that's all they do. The UTM concept provides outstanding value, and WatchGuard excels at being easy to use, scalable, and flexible.”

Paul Graydon, VP Strategic Accounts, BlackPoint IT Services

This form requires the Marketo script to function properly.

How to whitelist Marketo

Smart Security, Simply Done. It’s the WatchGuard Difference.

  • The Google Transparency Report shows that 90% of Internet traffic flows over HTTPS – and so it’s imperative to deploy network security that inspects it. At WatchGuard, our expertise extends beyond networking. We understand the intricacies of network attacks and how to apply advanced security technology that prevents them from reaching your network.

  • We can solve the hard problems …like how to inspect HTTPS traffic for threats and at the same time support TLS 1.3, the latest in modern encryption technologies.

  • WatchGuard’s Firebox appliances offer the highest performance with all security enabled! Read the Miercom report >

  • WatchGuard’s Firebox appliances have nearly 3X the throughput of our closest competitor.

White speech bubble with red border, text inside reads Thank You

Thank you for taking the first step in securing your network with WatchGuard! We will be in touch soon, but in the meantime, we’re here to help with these informative resources.