Meraki

Community

CPU Utilisation

Wurzi
Conversationalist
‎Jul 31 2025 5:18 AM
‎Jul 31 2025 5:18 AM

CPU Utilisation

Hi all,

 

We have a Meraki MX250 acting as a Hub in our SD-WAN deployment, and we're seeing CPU usage consistently hovering around 75%. We're still onboarding sites, so I'm concerned this may worsen.

Here's what I've observed:

  • WAN throughput isn't very high: approx. 2 x 250Mb load balanced across 2 x 1Gbps connections.

  • "Windows File Sharing" is the top application listed under traffic analytics.

  • The routing table exceeds 2000 prefixes.

I am looking to reduce the number of prefixes and considering add the IP of the Windows server to Trusted IP Addresses/Subnets.

 

Any other thoughts?

 

Many Thanks in advance. 

0 Kudos
13 Replies 13
jimmyt234
Head in the Cloud
‎Jul 31 2025 5:38 AM
‎Jul 31 2025 5:38 AM

What MX firmware are you running? There are some improvements in 19.1.9 if you are not already up to that version yet, example being:

  • Corrected an issue that resulted in MX75, MX85, MX95, MX105, MX250, and MX450 appliances reporting erroneously higher device utilization on the Meraki Dashboard.
In response to jimmyt234
Wurzi
Conversationalist
‎Jul 31 2025 5:54 AM
‎Jul 31 2025 5:54 AM

Running Current version: MX 18.211.5.1, I am being told by the MX the firmware is up to date

0 Kudos
In response to Wurzi
RWelch
Kind of a big deal
Kind of a big deal
‎Jul 31 2025 6:30 AM
‎Jul 31 2025 6:30 AM

If you were to go to Organization > Monitor > Firmware upgrades you will see the Latest Firmware Versions available and you can see the versions for each listed: 

Stable
Stable release candidate
Beta
Other available versions

MX18.211.6 is the stable version.
MX19.1.9 is the stable release candidate.

@jimmyt234 mentioned the improvements in MX19.1.9 and I would agree with his suggestion if you wanted to give MX19.1.9 a try.  You can roll back the firmware up to 14 days if you aren't pleased with the improvements.

 

Screenshot 2025-07-31 at 08.29.18.png

 

Screenshot 2025-07-31 at 08.29.26.png

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
In response to RWelch
RWelch
Kind of a big deal
Kind of a big deal
‎Jul 31 2025 6:34 AM
‎Jul 31 2025 6:34 AM

And you can always SUBSCRIBE to the Firmware Upgrades Feed in the Meraki Community if you want firmware release announcements sent to your e-mail inbox - it's a handy way to see when firmware releases are posted/published (released).

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
DarrenOC
Kind of a big deal
Kind of a big deal
‎Jul 31 2025 6:59 AM
‎Jul 31 2025 6:59 AM

How was the MX250 sized during pre-sales?

 

How many sites are you deploying in total?

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
In response to DarrenOC
Wurzi
Conversationalist
‎Jul 31 2025 7:02 AM
‎Jul 31 2025 7:02 AM

We have 178 branches. Currently, we have 168 connected.

0 Kudos
In response to Wurzi
DarrenOC
Kind of a big deal
Kind of a big deal
‎Jul 31 2025 7:31 AM
‎Jul 31 2025 7:31 AM

How many WAN connections does each Branch site have?

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
In response to DarrenOC
DarrenOC
Kind of a big deal
Kind of a big deal
‎Jul 31 2025 7:41 AM
‎Jul 31 2025 7:41 AM

Hi @Wurzi ,  worth reviewing the below link to check you’re not hitting the Max number of supported tunnels for your Hub MX

 

https://docs.google.com/spreadsheets/d/11eeTkL_xALtnGCNwPZRyJ6kJtCrVyzdetnUsDus6HrY/htmlview

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
In response to DarrenOC
DarrenOC
Kind of a big deal
Kind of a big deal
‎Jul 31 2025 7:42 AM
‎Jul 31 2025 7:42 AM

Which, for the MX250 is recommended to be 1000

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
In response to DarrenOC
Wurzi
Conversationalist
a month ago
a month ago

Thanks, checked. It looks to be the maximum unique sessions at the moment working with TAC

In response to Wurzi
GIdenJoe
Kind of a big deal
Kind of a big deal
a month ago
a month ago

Darren made an excellent point with the amount of tunnels since if both are running in NAT mode and each side has 2 ISP's you can take your site count and quadruple that number to know your tunnel count.

However maximum sessions is indeed another issue to tackle with.  It must be that you have too many hosts each making small concurrent sessions.  In that case if you want to keep the SD-WAN design you may need to change up to one-armed concentrators instead and group branches each to their own preferred concentrator.

RaphaelL
Kind of a big deal
Kind of a big deal
‎Jul 31 2025 8:00 AM
‎Jul 31 2025 8:00 AM

Open a ticket to support and ask them to review detailed stats. They will tell you the bottleneck ( CPU , Mem , PPS , tunnels and so on )

Steve_PF
Conversationalist
‎Aug 1 2025 8:06 AM
‎Aug 1 2025 8:06 AM

Another thing to consider is the high volume of small packets .  We ran to an issue where CPU of our hubs went to the roof after an Citrix upgrade.  Since we coudn't do aything about the trafic patern changes, we ended by doubling our MX250 to split the loads.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.