Alternate Management Interface on MR Devices with Firmware MR30.x

Solved
MK2
Building a reputation

Alternate Management Interface on MR Devices with Firmware MR30.x

Hello everyone,
 
does anyone here know anything about the function of the AltMgt interfaces in the firmware >MR30.x ? The support knows that it does not work, supposedly they are working on a fix.....but for almost a year now.
 
The whole issue is slowly becoming a show stopper.
1 Accepted Solution
Purroy
Meraki Employee
Meraki Employee

Yes,

 

Both 31.1.1 and 30.7 do have the fix.

 

Pablo

View solution in original post

12 Replies 12
alemabrahao
Kind of a big deal
Kind of a big deal

It’s designed to provide an alternate path for management traffic, separate from the data traffic.

 

https://documentation.meraki.com/Firmware_Features/Wireless_%28MR%29_Firmware_Features_Directory

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
Purroy
Meraki Employee
Meraki Employee

Hello,

 

To my knowledge this feature is working as expected.  I have several customers using it.  If it does not work on your environment I kindly suggest you open a support case to check what might be happening.

 

 

MK2
Building a reputation

It is primarily about the RADIUS feature via the AltMgmt interface. Support has confirmed that there is a problem here and there is currently no fix.
The problem is that the requests to the RADIUS are sent via the "normal" and not the "alternative" interface.

MK2
Building a reputation

After massive testing and tickets it seems this feature to be broken. Followed the advice to use DHCP at the AMI instead of static. Did factory resets but at the end, a wireshark of the attached switch port still shows the RADIUS packets to flow with the Mgmt-IP instead of the AMI-IP. 

I'm really at the end of my tether, I can't update the customer's APs and am stuck in version 28.x. Great.

cmr
Kind of a big deal
Kind of a big deal

Is your RADIUS server in the same subnet as the APs normal interface?  In that case I can see why it might be used instead of the management interface.  If it is, can you try changing the normal interface to a new subnetnamd see if that still fails?

If my answer solves your problem please click Accept as Solution so others can benefit from it.
MK2
Building a reputation

No, the RADIUS is located in a different network, it's also a different network class.

MR29.7.1 is the latest version in which it works as expected, either with DHCP or static IPs on the Mgmt and AMI interface.

MK2
Building a reputation

MK2_0-1713871590847.png

After more testing it seems the AP uses somtimes both interfaces.....red marked is the MGMT and green marked is the AMI interface. What the hell I'am doing wrong? 😞

Purroy
Meraki Employee
Meraki Employee

Hello, 

 

Firmware version MR30.7 has been released with a fix for this issue.

 

 

MK2
Building a reputation

Hello,

Support answered with 31.1.1 it should be fixed, but this is untested from my point.

 

I test this next week and report back.

Purroy
Meraki Employee
Meraki Employee

Yes,

 

Both 31.1.1 and 30.7 do have the fix.

 

Pablo

MK2
Building a reputation

Just tested 31.1.1 and it runs as if nothing had happened 😎.

30.7 I'am going to test out now.

MK2
Building a reputation

I can confirm that 30.7 also fixed the issue. 🚀🎉

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels