I'm a bit new to the Dashboard. I'm not able to click on any ports on the MX100 like I can on the MS350s.

How do you disable a port on a MX100? Console? Local status page?

Also, I'm not sure if I can apply the policy to the user. The user doesn't show up in searches and when I click on the client while on Port 48 it says that the client does not exist.

Is there another way to apply a policy to a user or should I get the 4 IP addresses they are using and make a firewall rule?

Sorry for the basic questions!!

Thanks!

If your hoping to console anything with Meraki, your going to have a bad time...

Aside from that the group Policy I am talking about is in Meraki. Network wide -> Configure -> Group Policy. Than find the device in the Client list, click left box and above the check box at top of list is the Policy drop down. There is actually a "Blocked" by default so you can just use that.

I think I'm going to have to check the connection from port 7 to port 48. This client is just not searchable in the client's list but keeps showing a lot of traffic on the switch.

Thanks for the assistance!

Thanks!! I'll look into it further. The fact that it's all local traffic is a good hint, thank you.

In your opinion, is it something I should be worried about?

If it's all localized traffic, does that mean it's pulling data from the servers/security cameras?

Could a loop in the network cause something like this?

Any more info is greatly appreciated!

~Autumn

I think I would be tempted to try and schedule in a reboot.  Something sounds screwy.

Are you running modern firmware on the MS350 like 10.45?

That's a bug.

When you use Meraki as L3 switch you usually get a random client in the network that get's allotted most traffic coming from the L3 switch.

From logical deduction (I don't have the facts like the Meraki team does) I believe the problem is as follows:
- The switches/AP can only track clients using MAC
- The MX can do both but is configured to use MAC because they're all in the same combined network.

- But the L3 switch of course uses it's own MAC to forward frames towards the MX if you use a best practice point-to-point /30 LAN between MX and MS and all LAN traffic gets routed out that /30 towards the MX.

- I also believe the traffic recognition differs on the switches than the MX'es so that means if the MX and the MS agree that this traffic is skype.. then the registration of that traffic to the dashboard will be coming from the MS with the correct client MAC address.   However if they don't agree for example the MS says it's HTTPS traffic, but the MX classifies the traffic as bittorent then you will have duplicate registration of the same traffic and of course the MX will see the traffic coming from the MAC of the MS causing one client to have major traffic towards WAN/Internet.  How it chooses the client name though is a mystery for me.

I hope a Meraki technician could provide more inside clarification on this.