I don't have info on the specifics, but I see that 19.1.7 also now has a note about this bug existing in that code as well and thought it'd be worthy to mention. ... View more

From the math I've done the benefit is not really in pricing, but it does add license portability for switching within the various tiers. ... View more

Can you ping the gateway? Do the devices show authorized in the Meraki client info? Do the ports show any errors? If you disable the access policy on the port do the devices work? ... View more

CDP/LLDP info in the dashboard doesn't clear instantly like on IOS devices. I've seen in the past it take up to 48 hours for the old info to clear out. ... View more

Just had another related issue where an order didn't generate licenses because the MX licenses on the order were SEC but the VMX was ENT. My disti had to open a CS case which then generated the licenses and then had to go through the mentioned support process to claim then. Might recommend partners putting VMX (and Z4) licenses on a seperate PO for now to avoid the intermediate step. ... View more

The port is indicating a UDLD TX/RX Loop: https://documentation.meraki.com/MS/Other_Topics/Unidirectional_Link_Detection_(UDLD) As your CDP info shows a switch connected to that port you likely do have some sort of loop you will have to track down. You may be able to look at all the CDP/LLDP neighbors in your meraki switch ports to find it, but you may also have to get into that switch and trace further as the loop could be further downstream. ... View more

In general yes they do but depending on your exact scenario you will want to look at the specs necessary for your storage device and then compare with Meraki's performance for the models you have or are looking at. For simpler storage devices you will probably be fine, if you are getting into enterprise SANs, I'd be looking at dedicated storage switching from the regular Cisco product line. ... View more

If you want a deny deny any on your outbound rules, you would have to program rules allowing your meraki devices to connect before that deny. This is the documentation for that: https://documentation.meraki.com/General_Administration/Other_Topics/Upstream_Firewall_Rules_for_Cloud_Connectivity ... View more

I understand that. That's why I provided the above url to the documentation site, it will generate correctly formatted JSON and you can even test from there. If you are using that and it's not working, you have a support case at that point. If you do get it working you should be able to just paste the resulting json into your script. ... View more

The above URL is the documentation link not the API URL, you have the correct API URL. Try leaving serials in with no value:   "serials": [], and then just adding tags. If you import the meraki collection into postman you should be able to play around with formats and see the details on the 400 error request and then be able to just put what works into your python script. I don't have SM devices I can reboot so I can't test myself. ... View more

Based on the documentation for this api, it appears you can just replace the serial section with the scope section in your code.   https://developer.cisco.com/meraki/api-v1/reboot-network-sm-devices/ You can always fill out the form here with your parameters and it will output the correct JSON necessary. ... View more

You have to contact support at this point, but they can do it. ... View more

If I'm understanding the translation I got correctly you want your wireless clients to be able to talk to your  AD servers without routing through the MX. You would need to set your SSIDs to drop traffic onto the same VLAN as the AD server or if you had a layer 3 switch available you could move the relevant routing there. Do you have a specific goal in mind? Like lowering the load on the MX or ? If everything is working right now without performance issues, I'm not sure I'd be making any changes in the same circumstances, but I  may be missing something with the translation. ... View more

As far as I know only another admin for the same org could see that or support if you are looking for GUI answers. You could write something using the API for getOrganizationAdmins: https://developer.cisco.com/meraki/api-v1/get-organization-admins/ If you use your own key, in theory you would get errors on the org ids in question. If you use another admins key you could get the actual data or you could use the new OATH method: https://as.meraki.com/login   ... View more

I can't say it's the exact same as we never looked at DNS and just focused on speed via iperf tests but we did find a known bug involving MS130Xs in certain scenarios causing slow uplink speeds. Ours was an MS130X uplinked to an MX75, the interim workaround was putting an MS130 (not X) in between. ... View more

It's not in the known issues list last I saw but this is a bug per support. We had to roll back to 18.211.3. I'd open a case so you get attached to the bug and get notification when it's fixed and increase its visibility. ... View more

While your symptom is a bit odd, when I have issues with paging and multicast on meraki, I enable the IGMP snooping querier on the relevant vlan and leave IGMP snooping enabled for the vlan. You should only need actual multicast routing if your broadcast needs to cross subnets. Overview of settings: https://documentation.meraki.com/MS/Other_Topics/Multicast_Overview%2C_Configurations%2C_and_Best_Practices ... View more

There is generally a small lag, but I've not seen nor do I see at quick glance anything like that for me right now. Have you verified that the time zone of the network matches your PC? That would explain some discrepancy. If it does match, do relevant logs for the missing time show up eventually? My only suggestions to resolve would be reboots followed by support. Perhaps a firmware update if you lagging there. ... View more

Those look like valid logs. If your system isn't parsing them properly you would have to take that up with them.  The only note I see on that page about formats says timestamps are required and the entry above does have that. I will point out that documentation page is for Firewalls and doesn't mention any compatibility with wireless or switch logs. The example you've provided is wireless.  The system may not support things besides firewalls.   In general, Meraki doesn't offer formatting options for their syslogs so your tool has to be the one translating them into something user friendly. ... View more

Can you provide a sanitized example of what you are seeing and what api calls you are using? ... View more

If the same sim card works in another MX, have you tried to factory reset the firewalls in question? Something could be gummed up in the firmware or config and that should clear it out. Otherwise I'd suggest calling support, they may be able to see more detailed diagnostics on sim card detection. There could be a bug they can identify and tell you if a different release may work. ... View more

The auth category on access points in event logs includes Splash authentication. That's where I would start. If you are authenticating against a radius or ldap server, there should be logs on that end as well that you may need to correlate. ... View more

If you want to explore outside of downtown the weekend before or after I'd say yes, but not for the actual convention, many of the hotels are very walkable. They will also almost certainly have shuttle buses available for the further ones. ... View more

Based on all of that it sounds like general connectivity is there. What you've done by turning off firewalls/ips/etc. would be the basic things I would say from a network perspective you can do without involving Meraki support. You are getting into where you might need to compare a working and non working packet capture or enable additional client or server side debugs. Can you telnet to port 443 and 80 from the remote offices successfully? ... View more

Can you ping the server in question from the remote sites? Can you access other items on the same subnet from the remote sites? Have you verified DNS is returning the proper IP? Have you tested trying to access via IP address? Those are all things I would want to know when troubleshooting. Depending on the answers I or others may be able to provide some other things to check. ... View more