Meraki interface MX85 to Core are getting 'route connection change, down and up

nst1
Building a reputation

Meraki interface MX85 to Core are getting 'route connection change, down and up

 

I have the following connection but today I noticed the following log.

I even lost service for approximately 1 minute or less.

 

 

nst1_0-1701993836720.png

 

 

peer_type gateway, peer: 10.52.20.2 connection_status: connected
peer_type gateway, peer: 10.52.20.2 connection_status: disconnected

 

These logs are only seen in the MX, in the MS I don't see anything

 

Check the configuration of both ports on both the MX and the MS and they are identical.

 

 

 

10 Replies 10
alemabrahao
Kind of a big deal
Kind of a big deal

Is STP enabled on MS? You know that MX does not support LACP so you need to enable STP.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
nst1
Building a reputation

 

Yes, is enable.

alemabrahao
Kind of a big deal
Kind of a big deal

I suggest you to open a support case.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
cmr
Kind of a big deal
Kind of a big deal

Do you see events logged on both sides and how long was the outage, the events should hint at it.

If my answer solves your problem please click Accept as Solution so others can benefit from it.
nst1
Building a reputation

They are only logs in the MX, in the MS I don't see anything at all, these logs are no more than 1 minute.

MartinLL
Building a reputation

Do you have IDS enabled on the MX?

MLL
nst1
Building a reputation

Yes, IDS is enable.

MartinLL
Building a reputation

There is a bug with SNORT3 on the MX85 and MX95 plattform that causes the ids engine to crash. When snort crashes the MX does not forward traffic until snort is restarted. And that takes aprox 1 min.

 

What you can do is ask support do downgrade the engine manually for you, or you can disable IDS.

 

But if it has only occured once then i doubt that this is the issue. If it happens more frequently just keep this in mind.

MLL
PhilipDAth
Kind of a big deal
Kind of a big deal

To be honest - I'm not sure if you relly even have an issue here.  Was this just a one off?

nst1
Building a reputation

Yes, it was only once, so far it has not happened again.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels