Meraki

Community

Intermittent Connectivity

Solved
ToryDav
Building a reputation
‎Aug 12 2020 12:06 PM
‎Aug 12 2020 12:06 PM

Intermittent Connectivity

Hi

I just installed a MS210 3 switch stack and 2 MX84s in H/A configuration using 2 ISPs and a VIP for each of those. My customer is experiencing an issue where the switch stack will alert "DNS is misconfigured, switch disabled" intermittently. I configured the DNS settings on both the MX uplinks the same on the warm and spare, but the DNS setting differ on the switches. Would this even matter? This doesn't affect the MX's they never lose connectivity, only the switch stack and therefore the clients attached to the network. This actually resolves itself after 20 minutes or so. Meraki support took a PCAP this morning working with the customer and could see DNS queries going out of the WAN interface on our MX, but could not see replies coming back from the DNS server. This does feel like an ISP issue, as we configured the MX to use Verizon DNS servers.

I'm looking for any insight and/or gotchas and best practices known around configuring DNS settings on these devices. 

Has anyone experienced this issue? You can see in the snip below in yellow over the last 1 day the intermittent connectivity for SW1 on my switch stack.

ToryDav_0-1597259115251.png

 

0 Kudos
1 Accepted Solution
In response to ToryDav
cmr
Kind of a big deal
Kind of a big deal
‎Aug 12 2020 3:04 PM
‎Aug 12 2020 3:04 PM

@ToryDavIF the MXs are using the ISP DNS and are fine, why not just use the ISP DNS for the switches as well?

If my answer solves your problem please click Accept as Solution so others can benefit from it.

View solution in original post

7 Replies 7
BlakeRichardson
Kind of a big deal
Kind of a big deal
‎Aug 12 2020 12:39 PM
‎Aug 12 2020 12:39 PM

@ToryDav If you hover your cursor over the orange and red part of the bar it should say what the issue was. 

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
In response to BlakeRichardson
ToryDav
Building a reputation
‎Aug 12 2020 1:06 PM
‎Aug 12 2020 1:06 PM

Hi @BlakeRichardson, it does, it says DNS is misconfigured - switch disabled. It really does not give me anything more that that. It happens on and off while using their primary ISP, but if we send all their traffic through the secondary isp, they don't seem to have the same issues. 

Everything works as expected, but out of nowhere DNS will fail for 10 or 15 minutes and then it will resolve itself if we don't intervene. 

0 Kudos
SoCalRacer
Kind of a big deal
‎Aug 12 2020 12:42 PM
‎Aug 12 2020 12:42 PM

Is the MX doing DHCP?

Is the Switch getting DHCP?

In response to SoCalRacer
ToryDav
Building a reputation
‎Aug 12 2020 1:04 PM
‎Aug 12 2020 1:04 PM

@SoCalRacer The MX is doing DHCP for a couple subnets they have, including their new client subnet. Their legacy subnet is statically assigned, so some of the switch ports are on the new, and others on the old until they can re-IP all of their servers and printers. All hosts that are on the new subnet receive DHCP addresses just fine from the MX. The switch stack is Layer 2. 

0 Kudos
In response to ToryDav
SoCalRacer
Kind of a big deal
‎Aug 12 2020 1:12 PM
‎Aug 12 2020 1:12 PM

I would check the LAN IP settings on the switch, make sure it got DHCP from the MX and 2 DNS servers configured, preferably the primary on LAN if available

0 Kudos
In response to SoCalRacer
ToryDav
Building a reputation
‎Aug 12 2020 1:15 PM
‎Aug 12 2020 1:15 PM

@BlakeRichardson The LAN IPs on those switches are statically configured with 2 DNS servers, 8.8.8.8 and 1.1.1.1. 

The MX upstream is set to 2 servers that are Verizon DNS servers. 

0 Kudos
In response to ToryDav
cmr
Kind of a big deal
Kind of a big deal
‎Aug 12 2020 3:04 PM
‎Aug 12 2020 3:04 PM

@ToryDavIF the MXs are using the ISP DNS and are fine, why not just use the ISP DNS for the switches as well?

If my answer solves your problem please click Accept as Solution so others can benefit from it.
li.common.scroll-to.top
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.