Meraki

Community

Check or Monitor Live per client traffic?

kredmore
Getting noticed
‎May 8 2018 12:48 PM
‎May 8 2018 12:48 PM

Check or Monitor Live per client traffic?

Typical scenario - MX showing Live Uplink traffic scrolling across screen at max download speed of WAN connection.  Knowing the dashboard well, with limits in place, etc. I want to know who the offending clients (wired and wireless) that are using up all the bandwidth - is this possible?

 

- Security Appliance shows live uplink traffic

- Switch shows per switch per client historically.

- Wireless shows live clients traffic per AP - I want across all clients (wired and wireless)

 

14 Replies 14
DCooper
Meraki Alumni (Retired)
Meraki Alumni (Retired)
‎May 8 2018 1:29 PM
‎May 8 2018 1:29 PM

Once you turn on detailed traffic analysis under network wide>general Traffic analysis a new tab will be under network wide> traffic analytics to see what your asking for.

In response to DCooper
Adam
Kind of a big deal
‎May 8 2018 1:36 PM
‎May 8 2018 1:36 PM

@DCooper wrote:

Once you turn on detailed traffic analysis under network wide>general Traffic analysis a new tab will be under network wide> traffic analytics to see what your asking for.

But the tightest you can filter the data on that page is for the last 2 hours.  So to quickly diagnose a spike in traffic it would be nice to be able to see live data or maybe even just the last 5 minutes.  

Adam R MS | CISSP, CISM, VCP, MCITP, CCNP, ITILv3, CMNO
If this was helpful click the Kudo button below
If my reply solved your issue, please mark it as a solution.
0 Kudos
In response to DCooper
kredmore
Getting noticed
‎May 8 2018 1:39 PM
‎May 8 2018 1:39 PM

Thanks for the reply.

 

Yes, have that turned on already. Traffic Analytics is historical, not live that I'm asking for, similar to AP status but across all clients.

0 Kudos
In response to kredmore
DCooper
Meraki Alumni (Retired)
Meraki Alumni (Retired)
‎May 8 2018 1:46 PM
‎May 8 2018 1:46 PM

Netflow, radius accounting(basic) or pulling from the API(which would be a bit of delay but you could format time slices how you'd like) those are the only options beyond what I mentioned. 

0 Kudos
In response to DCooper
kredmore
Getting noticed
‎May 8 2018 2:04 PM
‎May 8 2018 2:04 PM

ok. Thanks for the suggestions outside of Dashboard.

 

Seems like a future Dashboard enhancement request then, as it's available per AP per client today in Dashboard today.

 

And would Insight help here?

 

 

0 Kudos
In response to kredmore
PhilipDAth
Kind of a big deal
Kind of a big deal
‎May 8 2018 6:54 PM
‎May 8 2018 6:54 PM

Packet Capture for 2 to 5 minutes + Wireshark.

0 Kudos
In response to PhilipDAth
Adam
Kind of a big deal
‎May 10 2018 7:22 AM
‎May 10 2018 7:22 AM

@PhilipDAth wrote:

Packet Capture for 2 to 5 minutes + Wireshark.

Do what Philip said and when your capture is open in Wireshark click Statistics>Endpoints.  Click the IPv4 tab and sort by bytes. 

 

Would be nice though if Meraki had a smaller window than 2 hour or even a live statistics option for tracking down these sorts of things from within the dashboard.  

Adam R MS | CISSP, CISM, VCP, MCITP, CCNP, ITILv3, CMNO
If this was helpful click the Kudo button below
If my reply solved your issue, please mark it as a solution.
0 Kudos
In response to Adam
kredmore
Getting noticed
‎May 10 2018 9:49 AM
‎May 10 2018 9:49 AM

Created a "Wish" post.

0 Kudos
In response to DCooper
lpopejoy
A model citizen
‎Jun 26 2018 6:16 AM
‎Jun 26 2018 6:16 AM

@DCooper, Radius Accounting isn't available on the MX is it?  And can you pull the data with the dashboard API with an MX?  If so, can you link what API endpoint you would use here?  For some reason, I haven't seen anything that I thought would work for this purpose, but could have missed it!

0 Kudos
In response to lpopejoy
lpopejoy
A model citizen
‎Jun 27 2018 7:46 AM
‎Jun 27 2018 7:46 AM

If anyone else is wanting to use the API to get more granular detail, here is the endpoint you need to use:  https://dashboard.meraki.com/api_docs#clients 

 

I'm honestly not sure how accurate it is when you start looking at smaller time slices (600 sec or less), but it seems to be working pretty well.

 

Here's a snapshot of a quick dashboard I wrote that will display the stats for the serial # that I enter:

2018-06-27 10_44_58-Meraki Bandwidth Reporting Tool.png

In response to lpopejoy
DCooper
Meraki Alumni (Retired)
Meraki Alumni (Retired)
‎Jun 27 2018 12:09 PM
‎Jun 27 2018 12:09 PM

@lpopejoyJust curious what Database are you dumping the data into?

0 Kudos
In response to DCooper
lpopejoy
A model citizen
‎Jun 27 2018 12:16 PM
‎Jun 27 2018 12:16 PM

@DCooper  It actually isn't hitting a database.  Just pulling in the JSON and massaging a bit then dumping it into an HTML table.  

0 Kudos
In response to lpopejoy
decaalv
Conversationalist
‎Mar 8 2021 12:22 PM
‎Mar 8 2021 12:22 PM

Hi. I am affraid the link to the API call is broken. Can you repost? Thank you in advance.

0 Kudos
lpopejoy
A model citizen
‎Jun 26 2018 5:51 AM
‎Jun 26 2018 5:51 AM

I totally agree that we need better real time visibility in the MX.  When there is a bandwidth issue, the "last 2 hour" view isn't granular enough to diagnose an issue. 

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
© 2024 Cisco Systems, Inc.