Raphael , 28 years old , working as a network engineer in Canada. Been in IT for the past 10 years. Currently working with Meraki products for the past 4 years.
It is an option. But I want to get to the bottom of that story before downgrading since Meraki doesn't seem to know at all what is causing that.
... View more
Even a MX85 is struggling since we upgraded it this week : Support has suggested to go to MX 19.1.4 since some fixes are present in that version that are not yet ported to MX18.2 . Not a fan of running beta firmware while 'stable' firmware is not even stable but I will give it a try.
... View more
Cloud connectivity != Internet connection Just remember the next dashboard outage and when your MX will reboot every 8 hours , you might not enjoy that.
... View more
Long story short. "Security" asked to split all IOT devices in groups. HVAC , Cameras , card scanners and so on PER vlan and PER floor. We have a building with 80 floors. 6 groups ( vlans ) x 80 = insane amount of empty vlans 😀. Ugly design that I have to live with for another 12 months.
... View more
On a side note , this looks very similar to my old post. We had issues with MX85 not loading up when a large amount of vlans were configured. Fixed an issue that resulted in MX95 appliances being unable to boot up properly when more than 370 VLANs were configured. Configuring this number of VLANs is not recommended. https://community.meraki.com/t5/Security-SD-WAN/Maximum-vlan-limit-on-a-MX/m-p/235244
... View more
Hi , Works fine on my side {"enabled":true,"asNumber":xxx,"ibgpHoldTimer":90,"neighbors":[{"ip":"xxxx","remoteAsNumber":xxxx,"allowTransit":false,"ebgpHoldTimer":240,"ebgpMultihop":1}]} I'm polling a HUB running 18.107.6
... View more
Little update : This increase of device utilization seems to be caused by the IDS/IPS module. We are running in IDS Security mode. More to come.
... View more
Hi , So I just found out that getOrganizationDevicesStatuses is now deprecated and should be replaced by getOrganizationDevicesAvailabilities and other variants. https://developer.cisco.com/meraki/api-v1/deprecation/#deprecated-operations I'm fine with that , however with getOrganizationDevicesStatuses we used to be able to get the device model which we do not in getOrganizationDevicesAvailabilities. It was useful information for us for many reasons. Is it possible to add-it ? Cheers ,
... View more
Hi , Do you have NAT Exceptions with Manual Inbound Firewall ( early access ) enabled ? You shouldn't have to configure inbound rules to allow ICMP inbound to your WAN appliance. Also this won't apply to traffic incoming from AutoVPN ( you don't have to include your HUBs private IPs ) https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/Denying_Inbound_ICMP_on_the_MX
... View more
No. There is a static re-auth time of 3600s on MXs , when a Windows station does a 802.1X re-auth it goes to the DHCP renewal process. There is nothing to fix here, just a odd behavior.
... View more
