Meraki

Community

PSA: Upgrade Your MX64/65 Security Appliances for Continued Snort Support!

Phi-L
Meraki Employee
Meraki Employee
yesterday
yesterday

PSA: Upgrade Your MX64/65 Security Appliances for Continued Snort Support!

Hey y'all, Phil Coburn from Product Enablement here, with a friendly announcement for our MX64/65 owners! 

 

In May 2025 we released firmware 18.1.7.13 for the MX64/65 security appliances. There were several updates and fixes in this version, but the primary change was that our MX team bumped the version of Snort 2 -- the MX security appliance's IDS and IPS -- to 2.9.20. This provided MX security appliances with updated rule sets, protecting them against newly discovered vulnerabilities.


However, just a week ago Snort announced that other versions of Snort 2, like 2.9.18.1 and 2.9.19.0, are deprecated and will no longer be supported as of 12/18/2025. Since older versions of MX firmware (before 18.1.7.13) use these soon-to-be deprecated versions of the Snort 2 engine, if your MX64/65 security appliances aren't upgraded to the latest stable MX firmware release they will not have the latest Snort 2 IDS/IPS rules... and the last thing you want is for your IDS/IPS to be out of date. 

 

If you'd like to keep your MX64/65s up to date with the latest IDS/IPS rules (yes, you do), then upgrade to the latest stable firmware release. As always, you can find this under Organization > Monitor > Firmware UpgradesGood luck, and stay safe! 

 

Labels:
5 Replies 5
James_Craig
Conversationalist
yesterday
yesterday

Is the MX84 affected by this announcement at all?

0 Kudos
James_Craig
Conversationalist
yesterday
yesterday

Actually, reading the documentation below it seems that the MX84 is running Snort 3:
https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Threat_Protection#Versio...

alemabrahao
Kind of a big deal
Kind of a big deal
12 hours ago
12 hours ago

Hi @Phi-L 

 

But the release notes for the most current version and the release candidate version state the following:

 

Legacy products notice When configured for this version, MX64(W), MX65(W), MX84, MX100, and vMX100 devices will run MX 18.107.13.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
RaphaelL
Kind of a big deal
Kind of a big deal
11 hours ago
11 hours ago

18.1.7.13 = 18.107.13 

 

This is also the same way the firmware is presented with the API : 

"firmware": "wired-18-1-07"

I don't know why 🤔

In response to RaphaelL
alemabrahao
Kind of a big deal
Kind of a big deal
11 hours ago
11 hours ago

I suspected it from the beginning. 😅

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.