16.4 Beta - breaks Whitelisting and content filtering.

UCcert
Kind of a big deal

16.4 Beta - breaks Whitelisting and content filtering.

Jumped straight in and upgraded my Home/Lab MX to 16.4 (using an MX68).  Upgrade was smooth as expected.  Went through each dashboard page to see whats new.  All checked out fine, could see the new Anyconnect Beta feature - excellent, alls well.

 

Started browsing, tried to log into LinkedIn.....blocked, Facebook....blocked....hmmmm

 

Reviewed the event log, my device is being blocked due to content filtering.  My device and some others are whitelisted.

 

Removed the social media content filter - straight out.

 

Removed all content filters, set all devices back to Normal.  Then reverted back to blocking content and whitelisting my device.  Broken

 

@MeredithW @CarolineS - can we feed this back into the relevant BU?

Darren O'Connor | uccert.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
9 REPLIES 9
Adam2104
Building a reputation

I believe this is listed in the release notes as:

 

Known Issues

  • Group policies do not correctly apply to client devices

 

 

UCcert
Kind of a big deal

Hi @Adam2104 , I have no individual Group Policies setup and applied.  Unless Meraki are stating that Device Policies are also affected

 

UCcert_0-1615387791670.png

 

Darren O'Connor | uccert.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
Adam2104
Building a reputation

I may be mistaken, but I believe those pre-canned policies to also be group policies, just not custom-defined ones.

cmr
Kind of a big deal
Kind of a big deal

@Adam2104 you may be correct but if the Allow list etc. are Group Policies then why are they all on a menu called Device Policies?  Wouldn't the menu be called Group Policies...

UCcert
Kind of a big deal

Group, Device....its just broken 😂🤣

 

Going to leave on the Beta for now so I can play with Anyconnect

Darren O'Connor | uccert.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
MeredithW
Community Manager

@UCcert sent! If you haven't already, please do also file a ticket with support about it!

Meredith W | Community Manager, Cisco Meraki


Found this helpful? Give me some Kudos! (click on the little up-arrow below) New to the community? Get started here

200.gif

 

My approach to firmware upgrades is let @UCcert try it first and find all of the faults 🤣

Meraki CMNO, Ruckus WISE, Sonicwall CSSA, Allied Telesis CASE & CAI
cmr
Kind of a big deal
Kind of a big deal

🤣unfortunately @UCcert normally waits for me to upgrade first, though I think he might have jumped first on this one...

UCcert
Kind of a big deal

You’re not far wrong there Charles.

 

I see all your devices go down, come back up. If you don’t roll back I know it’s good 😃

Darren O'Connor | uccert.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels