cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Why do the switches need a public DNS Server to show up as green on the portal?

Highlighted
Getting noticed

Why do the switches need a public DNS Server to show up as green on the portal?

We're installing 12 MS-120 switches in a remote office and the switches are showing a DNS misconfigured error when we use the IP of the mgmt vlan as the DNS Server.  That is configured on an MX84.  If I enter a secondary DNS Server IP of 75.75.75.75, they go from Yellow to Green on the portal.  What does having a public DNS IP on each switch buy me?  I can still get to the switches without it.

3 REPLIES 3
Highlighted
Kind of a big deal

Re: Why do the switches need a public DNS Server to show up as green on the portal?

They don't need a public DNS server. I have lots that point to the private IP of my MX (that's also the DHCP server) and they work just fine. It's more likely that something is failing resolution using that DNS server.

 

 

Highlighted
Kind of a big deal

Re: Why do the switches need a public DNS Server to show up as green on the portal?

They just need a valid DNS IP.  Whether internal or external.  Best practice is to just use an external IP since it is really only for the switches to check-in to the cloud.  

Adam R MS | CISSP, CISM, VCP, MCITP, CCNP, ITILv3, CMNO
If this was helpful click the Kudo button below
If my reply solved your issue, please mark it as a solution.
Highlighted
Here to help

Re: Why do the switches need a public DNS Server to show up as green on the portal?


@RH6379 wrote:

We're installing 12 MS-120 switches in a remote office and the switches are showing a DNS misconfigured error when we use the IP of the mgmt vlan as the DNS Server.  That is configured on an MX84. 


Is your MX84 not configured as a DNS proxy perhaps? If it's not relaying and returning DNS queries and responses for clients, then the switch isn't going to connect either.

Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.