Meraki

Community

MX250 - VPN clients showing as connected in the dashboard when they are not

DavidSa
Just browsing
‎Jul 30 2025 3:05 AM
‎Jul 30 2025 3:05 AM

MX250 - VPN clients showing as connected in the dashboard when they are not

When I look at client connections on an MX250, and filter by "online" and "client-vpn" to see who is connected by VPN using the Cisco Secure Client, I see entries that are not connected. For example there are at least two entries showing as connected for people who have left the company who's accounts have been disabled\deleted.  If I select the entry for one of them it actually says the user disconnected in June! It also does it for people still working here. So I just wondered if anyone has seen this behaviour? It has happened for a long time.  Not sure if the info is cached somewhere and not updating for some reason?

Labels:
0 Kudos
3 Replies 3
GIdenJoe
Kind of a big deal
Kind of a big deal
‎Jul 30 2025 3:26 AM
‎Jul 30 2025 3:26 AM

Do you actually see the username is being those old accounts or is it just the detected hostname?  Sometimes if the same IP is given to another client dashboard can conflate the two.

It is however extremely important to check the username field if that one is still the same or not.

You could try "forgetting" the client and see when they reconnect if the data is correct.

0 Kudos
In response to GIdenJoe
DavidSa
Just browsing
‎Jul 30 2025 3:57 AM
‎Jul 30 2025 3:57 AM

Yes, it shows the username they authenticate as (and it's not just old accounts that show as online when they also show as disconnected when you click on the individual connection).  I probably added the user column in the past at some point.  We use Cisco Duo for MFA.

I already tried a forget in the past and it does seem to make them disappear for a while, and then they come back again later - we are talking 10-20 mins later.   

It's all very odd...

 

0 Kudos
In response to GIdenJoe
DavidSa
Just browsing
‎Aug 3 2025 11:56 PM
‎Aug 3 2025 11:56 PM

I understand what you mean if the same IP is given to another client the dashboard can conflate the two, but you would have thought a forget would clear that permanently.  It also does it with the same still live host showing as connected when in the details it's not connected.  I think I might just have to live with it - it's not a huge problem, just a bit annoying.

Thanks for trying to help.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.