Hey gang.

I did some testing with switching, dynamic vlan assignment using ISE and SmartPort Automations.

Here is the setup. 

MR44

MS120-24P

MX68CW

The MX is the default gateway for vlan 500 as well as the DHCP server.

The switch is plain L2. The port uplinking to the AP is configured as a "dummy" access port. The SmartPort Automation assigns the interface as a trunk allowing all VLANs upon seeing an LLDP string. This works (sometimes... rant for another time).

The AP has been configured with the 802.1x ssid wifi-test. This ssid is set to vlan override from ISE with a dummy VLAN set to default tag.

Here is the strange part. I use VLAN profiles along with the "use vlan names in radius response " radio checked. Upon authentication this works as expected. The correct autz profile is returned, meraki adds the client in the correct VLAN and the client gets an IP address. But when i try to ping the default gateway the packets are lost.

I did a PCAP on the switch port towards the AP and i can see the ARP mesages trying to resolve the gateway IP/MAC. But the MX sees nothing.

To verify that i was not going crazy i disabled the Automation and configured the port manualy and it all started working as expected.

The vlan profiles are network local. However i use SmartPort profiles and Automation on the organization level.

Is there some known issues/limitations with pairing smart port Automation and Profiles along with VLAN profiles and named VLANs?

Thanks for reading!

Software level is latest stable release for all network devices.