We have a site that guest wifi isnt working but internal is. Wireless health is saying that it is a DNS failure, but we can reach 8.8.8.8, since we can get out to an address and not a name I have to agree with it. But thing is I have no idea how to see any of the information for the Meraki DHCP that it is actually handing out. This is connected up to a Comcast gateway but cant confirm any of its settings. Any tips?
Also, How does this actually work? Does it use a make believe VLAN or is it encapsulating the traffic on that VLAN somehow?
10.128.128.128 is the IP address of the AP. The AP can handle DNS resolving for the guests. Previous posts should help troubleshooting if you're experiencing issues with that if it's not working.
However, if you want you can still configure a custom DNS server too:
Edit: My reply was meant for your previous post.
So funny thing, AP was working fine. Tools section could ping both my DNS servers, resolve addresses and ping websites. All we did was took Primary 1.1.1.1 and secondary 8.8.8.8 DNS servers for AP, and swapped them. Now its working fine. If anyone can tell me why, that would be awesome.
Comcast. But strange thing is, the Normal non-NAT Mode network worked fine. Just the Nat Mode/Meraki DHCP stuff decided not to resolve DNS. I mean its working now, just dont understand why it didnt.
The Meraki DHCP doesn't operate as a full DHCP server per se. It creates the client IP address using a hash of the client's MAC address, and responds with that and a gateway and DNS server of 10.128.128.128 - which is an IP address that the access point responds to. The access point then proxies the DNS requests from the clients to the DNS servers it has configured (i.e. the ones you can see on the main access point summary/dashboard page), so you need to ensure that the access point can reach these DNS servers. By using this approach if the client roams to another access point it will most likely receive the same IP address, and maintain the same gateway and DNS server, so it will be as seamless as is possible without using any of the various roaming technologies/protocols out there.