Thanks for the reply Brash!

I had considered those known issues, but we were on 14 code before and didn't have this, I would have expected it there as well since one was always present and the other was from code 10.  The other thing that is puzzling is that these errors aren't coming up when something is changed or rebooted.   The switch is running just fine for a few days then I get a short burst of these errors from across campus, the errors come up and clear in a short time, but it seems to come in waves.  

Currently I haven't had a UDLD error since May 24th, but I had it on 6 completely different switch stacks, it occurred and cleared on all of them all within 10 minutes.  Then on May 22nd I had another wave of these errors, all happening and clearing within about 25 minutes.  and this was in 14 completely independent stacks and buildings.  

I'm not sure, I'm hoping it stops happening though.  A big part of me was starting to wonder if one of my core switches didn't upgrade correctly.

Yellow Tang

I have a somewhat big setup and the upgrade went terribly wrong, nothing I'm not used when it comes to Meraki switches (sad, but true) - this will be a long story 😉

I have 4x MS425-32 switches in a stack + a number of MS225-24/48 in different combinations (some are single, some are 2pcs stacks and some are 3pcs or more which is very important in the Meraki world) - overall ~40 Meraki switches + ~10 WS2960X.

All "remote" switches are connected to 2 of the core switches using LACP, so no SPOF.

I set up a staged upgrade where I first wanted to upgrade the core switches (they are handling all L3 as in your setup), then 2 pure management switches in server rooms and then the rest of the remote switches.

Here is what happened:

• cores upgraded nice, everything green, all ports up, BUT
• as in your story I had something between 10-20 switches behind the cores offline and not handling traffic despite all ports being up and showing no issues
• so the upgrade got stuck and I needed to react
• first I rebooted all cores from the dashboard - didn't change a thing
• then, since I have a long story with the Meraki switches I started disabling all redundant connections towards the remote switches (so basically all ports on core 02 and 04 disabled, only stacking was up)
• after that almost all switches started regaining connectivity and started upgrading
• by saying almost I mean that there is a story if you have more than 2 switches in a stack and a cross stack LACP connection to the cores they tend to "break", some of the switches in a stack will be offline, some online, the best resolution to that is remove all redundant connections (I disabled that from core side) and then reboot one of the switches that is online, if this doesn't help you pick the next one and next one and this will eventually kick in. If you are onsite, then just remove redundant connections and reboot the whole stack. I assume that rebooting the master switch would help right away, but I didn't know that the dashboard shows the info, at least on the latest firmware
• I waited some time and observed the current firmware version on the dashboard (it will show you if its "not current" or MS 15.21.1)
• after everything upgraded I rebooted the cores once again and then I started enabling the redundant ports and everything is working as expected since then (two weeks ago)

So this was a journey which took me over 2 hours to fix remotely, I even didn't bother to raise a case because I knew that playing with ports and rebooting will work and also I planned to do a full reboot anyway on the cores because I have low trust in the firmware upgrade process (bad experience).

If you have any questions - go ahead 😉

We were upgrading from MS14.33.1.

Is this something we should be doing? First upgrade all L2 remote switches and then the cores?

Are you still experiencing issues? What is happening?

Curious why you are thinking about an rollback.

I'm running LACP between access switches and cores in different configurations, cross stack on both sides, sometimes one single access switch with 2 LACP uplinks to 2 cores and sometimes a single switch with one uplink going to one core and a backup link (blocked by RSTP) going via an other switch to an other core.

After things settled after the upgrade I didn't notice any LACP issues.

We also experienced things not being reachable in a random way and it was either the LACP links misbehaving or L3 on the cores, but in the end disabling all redundant ports (not unconfiguring LACP) helped and that is what I would try in your situation.

Since we have all links from access switches spanned across 2 cores I went into one of them and disabled all ports (not the uplink and stacking ofc), after waiting a minute or two things went back to normal, then I started enabling ports and the issues never came back.

Could you provide some more detail on "disable" all ports. Is this on MS425? Did you disable / re-enable both unused ports and also active LCAP ports? We have major connectivity issues between MS390 v C16.7 up link to core MS425 v16.7.  

It's on the MS425 (my core), I don't have MS390's, I have MS225 downstream.

What I mean is that I would disable all redundant links towards given downstream switches from the MS425 perspective.

If I have a LACP connection to some downstream switch (or downstream stack) consisting of 2 ports, I would manually disable one of them and leave only one running (if I would have 5, I would disable 4 and leave one running).

So basically, what I'm doing is killing all redundancy in my network during upgrades, just in case.

And since I'm doing this only on the core switches, if something is going wrong I can easily turn the ports back on (not disabling these links on both sides).

In a perfect world, lets say you have 2 core switches, both of them having connections to all downstream switches (LACP, 2 ports, each ending up in one of the cores), then it would mean that you just need to disable all ports on one of the core switches (assuming you have them stacked, the stack you leave enabled) - that's what I'm doing more/less.

If you read the release notes for the firmwares you will see that there is a lot going on around switches creating loops during reboots on LACP ports and so on.

Its my way of preventing these since some firmware versions ago.

BTW, maybe this known issue is hitting you?

• Switches move LACP ports to an active forwarding state if configured. This can cause loops when connecting to an MS390 or other Catalyst switches unless the bundles are configured on the MS390/Catalyst switches first. All non-catalyst ports are configured in passive LACP mode so that loops do not occur between Meraki switches (always present)

Sorry for the lengthy post and repeating myself, just ask if you have any doubts 🙂

And by any means - that is not what Meraki would suggest, its only my way of working around the issues that I kinda got used to during the years.

I didn't catch that you were doing this ONLY during upgrades.  I disabled one downstream port on every switch so we no longer have redundancy at all and it fixed the issue.  I cannot reenable LACP though, or the problem will come back.  I'm waiting for an upgrade past 15.21.1 to be stable in hopes that they address cross stack LACP.  Of interesting note, I think if one side is Cross Stack, and the other goes to a single switch it's still okay.  It's only if the redundant links are split across stack members on both sides.

Thank you!

Yes, when updating or I think when rebooting the devices to be more specific.

But on a daily basis I'm not having any issues, so what you are experiencing is very weird.
Have you contacted support?
Can you share all settings from the ports on both sides here? Maybe there is something that you are just missing?