Yes, lots of Aastra & Yealink poe phones with some locations having both.  The switches are  generally near employee offices within a climate controlled space but definitely not environments with the level of cooling and air flow we'd find at datacenters.  I'll check into logging temperature data either from switch snmp or through external means to get an accurate picture.  Changelogs for the upcoming firmwares you mentioned will be revisited.  Thanks for the response. 

Possibly relevant items noted in recent firmware changelog in case anyone else encounters this:

 

Switch firmware versions MS 14.31 changelog

Known issues

• MS120s on rare occasions will reboot (present since MS 11)
• Links being established on a MS120 can result in neighboring ports to flap (present since MS 11)
• MS120s with multiple access policies enabled may reboot when port changes are made

 

Yes, access policy was enabled using Cisco ISE (radius) on most ports.  This was configured in ISE as audit only with no blocking to evaluate results.  It was necessary to remove those policies from most ports due to a bug (while on 12.17 or 12.28 stable) causing traffic to stop passing on any ports with policy enabled which may still be a factor on 14.x we'll have to revisit:

 

Switch firmware versions MS 12.30 changelog

-Bug fixes:

Ports with an access policy can fail to grant network access to end devices post-reboot on MS120/125 series switches

 

Switch firmware versions MS 14.31 changelog

-Alerts:

Clients on a RADIUS authenticated port that ages out of the MAC table due to inactivity will fail to be relearned until a port bounce has occurred (present since MS 14.28)

 

 

Thanks @eye. We had the same thing happen to us. You can most likely re-create the issue you are having to prove it out. I set up a dev environment with a MS120-48FP which was able to connect to our ISE server for RADIUS access authentication. If you test with 1 or 2 devices it may not work, but I connected 10 endpoints to the MS120 with 802.1x access policies enabled. I then made a change on my switch to force it to check-in with the Meraki cloud to update it's config and that check causes the switch to recheck all of the access policy configured ports and essentially overloads the CPU on the switch. If you run a ping to your switch that is having an issue, you'll see the change get pushed and when it does, your switch's latency will be in the 1000+ ms range and may even time out. Another thing I saw is that the switch doesn't fully reboot. You still see LEDs flashing and and lights on, but you can hear the switch rebooting.

Yes unfortunately with the firmware issues you are in a "rock and a hard place" situation. MS v12 has the CPU bug when Access Policies are enabled, but the MS v14 could have a fix for the CPU bug, but the new RADIUS timeout bug 14 comes with also forces you to stop using Access Policies. We had to contact support and our account rep and ended up returning our MS120s and getting MS210s. They have a different CPU that is a lot more robust and can handle the Access Policy on the port.

hopefully they can help you out.

management ip icmp response time spiking on some ms120's in our environment has been observed.  Client devices on the access ports haven't seemed impacted so it hasn't been a priority to focus on isolating the cause.  Is it correct that there is no support for monitoring cpu/memory utilization in these?  It's assumed icmp requests are just getting handled at a lower priority than client traffic until it's looked into further:

 

 

 

"Is it correct that there is no support for monitoring cpu/memory utilization in these?" That is correct. If you can reproduce the issue with support, they can provide the cpu/memory utilization on the back end.