Community Record
1802
Posts
1675
Kudos
113
Solutions
Badges
Nov 28 2018
8:03 AM
1 Kudo
Far as I know yes, just the IP address via syslog option. Just filter the syslog to only send IDS
... View more
Nov 28 2018
7:40 AM
The only thing I know of is using syslog for security/IDS events to a 3rd party SIEM collector.
... View more
Nov 28 2018
6:41 AM
Ubiquiti has a whole selection for that stuff. I don't see Meraki ever getting into that world. https://fiber.ubnt.com/
... View more
Nov 28 2018
6:39 AM
2 Kudos
https://shimi.net/services/opt43/ You have your information criss-crossed 10.0.1.199 = 0a.00.01.c7 which means option 43 = f1040a0001c7 10.0.1.201 = 0a.00.01.c9 which means option 43 = f1040a0001c9 So in your case the DHCP option 43 will need to be set to "f1040a0001c9" and hopefully it will start working 😃
... View more
Nov 26 2018
12:22 PM
Ah ok. Well the only thing I can think of is two just use 2 ports on the 8 port switch to your 48 port. I can't think of anything that would give you what you want. At first my mind went to virtual stacking but that doesn't really do what it sounds like it would do.
... View more
Nov 26 2018
7:03 AM
2 Kudos
For the most part the dashboard access/permission is network based. So you would select a target network, and the user will have the following options to choose from: Guest ambassador: User only able to see the list of Meraki authentication users, add users, update existing users, and authorize/deauthorize users on an SSID or Client VPN. Ambassadors can also remove wireless users, if they are an ambassador on all networks. Presented with user management portal only. Monitor-only: User only able to view a subset of the Monitor section in Dashboard and no changes can be made. Read-only: User able to access most aspects of a network, including the Configure section, but no changes can be made. Full: User has access to view all aspects of a network and make any changes to it. https://documentation.meraki.com/zGeneral_Administration/Managing_Dashboard_Access/Managing_Dashboard_Administrators_and_Permissions Assuming you have a Combined network this might limit your control, however I believe you can use TAGS to give you control on a per-device type basis. If you have the MX on its own network then you can limit users from read-write to read-only etc. It doesn't get as granular as you are looking for unfortunately. I wish it did.
... View more
Nov 23 2018
2:04 PM
3 Kudos
First two pictures are some work I did at a family members apartment, to clean up a terrible pre-installation. Ethernet cables ran through the apartment which was awesome, they just never bothered to terminate them lol. The after photo gives you the general final product of what I ended up with. As for the office, I don't have a before photo, so you'll have to just image a big cable nest of chaos. This photo here is how I standardize things at work for all the IDF locations. 24 port patch panel 48 port switch 48 port patch panel ...rinse repeat This is the cleanest solution and I hate doing it any other way 😃
... View more
Nov 23 2018
6:56 AM
Give me the IP of your WLC and I can convert it to the correct hex format
... View more
Nov 22 2018
9:16 AM
Can you provide a screenshot of how you have Option 43 configured? Also are you able to provide the console output from the AP after you turn it on. Might be worth trying to set up the port forwarding via the following guide using these ports. Not sure if this will work though. https://documentation.meraki.com/MX/NAT_and_Port_Forwarding/Port_Forwarding_and_NAT_Rules_on_the_MX ip forward-protocol udp 12222 ip forward-protocol udp 12223 ip forward-protocol udp 5246 ip forward-protocol udp 5247
... View more
Nov 20 2018
6:44 AM
2 Kudos
Unfortunately no you can't use AnyConnect as it utilized IKEv2 and the MX is currently only able to use IKEv1 (crazy I know, and hopefully they'll update it). Here is the guide on how to configure a variety of clients to connect to the MX using ClientVPN. https://documentation.meraki.com/MX/Client_VPN/Client_VPN_OS_Configuration
... View more
Nov 18 2018
1:40 PM
3 Kudos
It can be disabled, but I believe you have to request support to enable the toggle for it though. You did in the past anyhow. Not sure if they've defaulted it to being view-able for all or not.
... View more
Nov 18 2018
10:08 AM
3 Kudos
What @PhilipDAth said. Scroll down and you'll see real world fail over with cellular being used. https://nolanwifi.com/2018/10/25/you-down-with-l-t-e-yeah-you-know-me-raki/
... View more
Nov 17 2018
10:57 AM
1 Kudo
I'm just starting to learn Python, so I apologize if I'm not much help here. That being said: Error 400 = Bad Request- You did something wrong, e.g. a malformed request or missing parameter. Just in case, I would change your POST command from n57 to just API, in case your shard in not accurate. The error message you show is showing n57 but the python script is showing API. Any link between the two somewhere else we are not seeing? Also you have # in front of PAYLOAD. Assuming that is supposed to be there? Here are some things I found that might assist you: https://create.meraki.io/build/meraki-python-library-installation-guide/ https://github.com/meraki/automation-scripts https://community.meraki.com/t5/Solutions-APIs/400-Bad-request-There-was-a-problem-in-the-JSON-you-submitted/m-p/18543 @MacuserJim <---- Jim here has a screenshot on another thread which appears to show how to create a new network. https://community.meraki.com/t5/Solutions-APIs/Creating-a-network-container-which-should-be-bound-to-a-template/m-p/30730 Good luck and let me know how it goes, would love to learn from this. ^_^
... View more
Nov 15 2018
9:13 AM
3 Kudos
I'm torn because I've seen instances where the AP fails that test, but radius still works. So at this point I would say try it and ignore those test results and see what happens.
... View more
Nov 15 2018
7:19 AM
1 Kudo
Assuming then your access points have static IP addresses? I find its easier to simply add the /24 the AP's sit on. Also assuming the access points can reach the NPS server? Pings work etc.
... View more
Nov 13 2018
6:59 AM
I've not personally set it up, but here are some guides. https://create.meraki.io/build/network-alerting-in-webex-teams-with-webhooks/ https://meraki.cisco.com/blog/2018/10/real-time-alerting-with-webhooks/ https://create.meraki.io/guides/webhooks/
... View more
Nov 13 2018
6:52 AM
Seems to be working fine for me. I'm on shard n76, so if you on a different one it might not be affecting me.
... View more
Nov 11 2018
2:11 PM
1 Kudo
Can you try the speed test with a different client and if so do you get the same 10Mbps results? Also just in case try a different channel other than 161 (most likely fine but you've got nothing to lose).
... View more
Nov 10 2018
9:08 PM
Can you confirm your settings under Wireless>Configure>Firewall and Traffic Shaping
... View more
Nov 8 2018
11:04 AM
1 Kudo
I don't see any option to do this via API (yet). Only thing I can think of is using the Bulk network creation where you can import from excel document. https://documentation.meraki.com/zGeneral_Administration/Templates_and_Config_Sync/Using_the_Bulk_Network_Creation_Tool
... View more
Nov 8 2018
8:34 AM
At first I thought you need to enable Network-Wide>Configure>General>Traffic Analysis>Detailed (to collect hostname visibility). However, I have this enabled already, and I checked some event logs for my MX and I see the same thing. I found this old thread about a beta program but it looks like its closed now. I don't see this feature on my settings page anywhere so not sure what this actually did. https://community.meraki.com/t5/Security-SD-WAN/Need-internet-activity-log-of-each-client/td-p/7649 Not sure how to get the entire URL.
... View more
Nov 7 2018
3:14 PM
3 Kudos
Just make sure you get the ones that support it. I think its MS250 and up. https://meraki.cisco.com/lib/pdf/meraki_datasheet_ms.pdf
... View more
Nov 7 2018
7:41 AM
1 Kudo
Did you add the IP for the switch (or the subnet it sits on) into RADIUS? Also I've found sometimes the test button to not be 100% reliable. Like authentication works but it fails. Try one of the ports and see if authentication functions or not. In the slight off-chance that is what it is.
... View more
Nov 7 2018
6:34 AM
In your original spectrum android view, I could only see maybe 2 or 3 neighboring networks on the same channel. But as you can see, your access point can see many more (and I would imagine its more if you expand the list). So there is a good deal of competition for channel 6 alone, no way of knowing for sure how much contention there is channel utilization wise. The built in spectrum tool gives you an 'idea' but my experiences with it have been lack luster so I tend not to believe everything it shows me. It's possible that with all the CCI your seeing, there simply isnt' much you can do to improve it, other than move to 5GHz. However, I case this is the bug i'm referring to earlier with specifically the MR34 model and 2.4GHz throughput issues, I would say swap out the AP with a different model (or just place one on a desk nearby and test). Or contact support, have them downgrade to 24.12 and try again. That will confirm if its the environment, or firmware issue.
... View more
- « Previous
- Next »
My Accepted Solutions
Subject | Views | Posted |
---|---|---|
2991 | Feb 22 2024 11:30 AM | |
2282 | Jan 30 2023 2:35 PM | |
3977 | May 11 2022 1:49 PM | |
3897 | Mar 19 2021 10:53 AM | |
4456 | Dec 23 2020 8:30 PM | |
3208 | Jul 9 2020 12:36 PM | |
3501 | May 13 2020 4:44 PM | |
5045 | May 13 2020 8:23 AM | |
4293 | Apr 27 2020 7:54 AM | |
5566 | Apr 11 2020 9:11 AM |
My Top Kudoed Posts
Subject | Kudos | Views |
---|---|---|
72 | 43476 | |
9 | 26012 | |
8 | 14319 | |
8 | 5891 | |
7 | 1436 |