Meraki

Community

MS130 MS150 -

RenataL
Conversationalist
yesterday
yesterday

MS130 MS150 -

Good morning everyone! Has anyone ever experienced a malfunction with the MS130 or MS150 regarding the MAC allow list configuration? We're currently having a situation with one of our customers where the switch recognizes the MAC address with the policy disabled, but when we enable the access policy via the MAC allow list or sticky MAC allow list, the switch no longer recognizes the MAC address and disables the port due to the port security policy. Has anyone seen or resolved something similar? Meraki MS18 Software

Labels:
0 Kudos
6 Replies 6
RWelch
Kind of a big deal
Kind of a big deal
yesterday
yesterday

Have you considered resetting the port completely, removing any port security settings, and then applying the MAC allow list from scratch?

Also, double-check the MAC address to make sure there are no extra spaces or formatting issues that might be causing the switch to misrecognize it.

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

Hello, here are some things to take into consideration.

 

  • Meraki does not support MAC allow list or sticky MAC allow list within switch port profiles. If you're using port profiles for bulk configuration, these access policies won't be available.
  • To apply MAC-based access policies, you’ll need to remove the port from the profile and configure it individually.
  • When you enable MAC allow list or sticky MAC allow list, the switch restricts traffic to only the listed MAC addresses.
  • If the MAC address is not explicitly listed or not dynamically learned (in the case of sticky MAC), the port will be disabled due to the port security policy.
  • Sticky MAC allow list can take up to 5 minutes to learn and reflect MAC addresses in the dashboard. During this time, the port may appear disabled or not recognize the device.
I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
In response to alemabrahao
RenataL
Conversationalist
yesterday
yesterday

Could you reference any documentation that may confirm your statements, please? 

0 Kudos
In response to RenataL
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday


Regarding the profile, it was something confirmed by the Meraki team itself.


Solved: No Access Policies with switching port profiles? - The Meraki Community

 

As for the 5 minute time you can check here.

 

Switch Ports - Cisco Meraki Documentation

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
In response to alemabrahao
RenataL
Conversationalist
yesterday
yesterday

Thanks a bunch for the info. 

0 Kudos
In response to alemabrahao
alemabrahao
Kind of a big deal
Kind of a big deal
yesterday
yesterday

One more link https://documentation.meraki.com/MS/Port_and_VLAN_Configuration/SmartPorts#Requirements.2C_Guideline...

 

alemabrahao_0-1757353873968.png

 

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.