Meraki

Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

ethernet to wireless

Solved
Dave_B
Comes here often
‎Nov 7 2023 1:13 PM
‎Nov 7 2023 1:13 PM

ethernet to wireless

Hello All,

Not a wireless expert by any means.

I have an ethernet to wireless device (anybus bolt) that I have connected to an SSID. feeding off of that is an IoT device (PLC).

I can see the PLC connected, its IP, its MAC, able to ping the device through the meraki dashboard...it's connected.

However, I can't access this PLC over the network in any way...no ping, no trace route, can't see it as active in my management software. 

I can connect a laptop to the SSID and have full network access.

I'm lost here and could really use some advice.

Re-set up an old cisco AP running off my cisco controllers and the PLC works as it should. 
This must be something with meraki.

The bolt is not wifi6 capable so I did turn off 802.11x for both 2.4 & 5 Ghz. 

Have a radio profile set to only use 2.4 Ghz.

Both devices are using static IP, but I did try with DHCP and both did pull an address.

 

any help is appreciated.

 

0 Kudos
1 Accepted Solution
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Nov 7 2023 2:53 PM
‎Nov 7 2023 2:53 PM

Does the PLC by chance have a static IP address, but the SSID is configured to have mandatory DHCP (which would cause the PLC traffic to be blocked)?

 

https://documentation.meraki.com/MR/Access_Control#Mandatory_DHCP 

 

This is under Wireless/Access Control (make sure you choose the correct SSID first).

PhilipDAth_0-1699397575707.png

 

View solution in original post

7 Replies 7
RaphaelL
Kind of a big deal
Kind of a big deal
‎Nov 7 2023 1:20 PM
‎Nov 7 2023 1:20 PM

Hi ,

 

On your SSID have you set 'allow local lan' ? 

 

https://documentation.meraki.com/MR/Firewall_and_Traffic_Shaping/'Deny_Local_LAN'_settings_in_Cisco_...

0 Kudos
In response to RaphaelL
Dave_B
Comes here often
‎Nov 7 2023 1:24 PM
‎Nov 7 2023 1:24 PM

Yes

0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Nov 7 2023 2:25 PM
‎Nov 7 2023 2:25 PM

>I can connect a laptop to the SSID and have full network access

 

It sounds like the packets are being blocked when moving between the AP and the wired network.  Are there any WiFi firewall rules?

Are you on the same VLAN as the WiFi device, or a different VLAN?  If on a different VLAN, does the device routing between the VLANs have any ACLs?  If on a different VLAN, do all devices have the correct mask and default gateway configured?

0 Kudos
In response to PhilipDAth
Dave_B
Comes here often
‎Nov 7 2023 2:48 PM
‎Nov 7 2023 2:48 PM

I have no firewall ACLs in place for any ssid (except guest wifi).

I have a laptop on a different vlan that has no access or pings to the PLC.

I have a laptop on the same vlan & SSID as the PLC with no access or pings to the PLC but has full network access. I have internet restricted for this SSID but can access network shares, internal sites, printers, etc...

So a computer on this SSID & vlan has no issues, but this ethernet-wireless bridge does

 

0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Nov 7 2023 2:53 PM
‎Nov 7 2023 2:53 PM

Does the PLC by chance have a static IP address, but the SSID is configured to have mandatory DHCP (which would cause the PLC traffic to be blocked)?

 

https://documentation.meraki.com/MR/Access_Control#Mandatory_DHCP 

 

This is under Wireless/Access Control (make sure you choose the correct SSID first).

PhilipDAth_0-1699397575707.png

 

In response to PhilipDAth
Dave_B
Comes here often
‎Nov 8 2023 7:35 AM
‎Nov 8 2023 7:35 AM

mandatory DHCP was enabled. I disabled it and my PLCs started pinging. 

Thanks for the pointing that out.

I'm curious how this works...the AP is only accepting traffic from a DHCP response?

If there is no DHCP response for an IP, no traffic passes over the AP?

0 Kudos
In response to Dave_B
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Nov 8 2023 10:11 AM
‎Nov 8 2023 10:11 AM

Yes.  Most WiFi networks shouldn't have clients with static IP addresses, and this reduces a whole lot of potential problems by not allowing machines with a manually configured address.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.