Meraki

jay_b · ‎Mar 9 2022

@RaphaelL I think I found solution. There was some old configuration it was blocking it. It's working now. You're absolutely right, S2S shouldn't affect client VPN. Thank you!!

RaphaelL · ‎Mar 9 2022

Hi , As stated by rymiles this is the SSID used for Mesh. You can disable it ( it is a Network-Wide setting ) : Meraki allows the ability to disable mesh on the Meraki Access Points. The toggle is a network-wide setting and is configured under Network-wide > Configure > General > Device configuration Disabling mesh will stop the APs from broadcasting the Mesh SSID to save airtime. https://documentation.meraki.com/MR/WiFi_Basics_and_Best_Practices/Wireless_Mesh_Networking

KW-SYN · ‎Mar 9 2022

Thanks guys. So I'm guessing the switch with the next lowest MAC would take over once the master fails. How much different would it be for the MS390?

Bruce · ‎Mar 8 2022

@harmankardon you’re on the right track. Hub and spoke is the way to go, as everyone else has said, and yes, the spokes can still communicate via the hub. The site-to-site VPN rules are organisation-wide - so you only create and apply one set of rules and they appear on all sites. They are also applied in the outbound direction only (I.e. as the traffic leaves the site over the AutoVPN). I’d create rules that allow connections from the HQ subnets to all the other site subnets and from the site subnets to the HQ subnets, and then after them a series of deny rules that prevent traffic between the site subnets.

PhilipDAth · ‎Mar 7 2022

A reduction in spanning tree outages in a mixed Cisco Enterprise and Meraki environment. If you don't mind intermittent outages then you can leave it as RSTP.

RaphaelL · ‎Mar 7 2022

That doesn't make any sense. If your networks are combined , getNetworkClients will return ALL clients from the network, including those from the MX , MS , MR.

redsector · ‎Feb 25 2022

it was the power saving mode causing the erroros. I did switch off any power-saving modes, since then no CRC-errors occured.

Lourdes · ‎Feb 21 2022

Oh. I see. Thanks for the info. 😄

paddyboy · ‎Feb 16 2022

Okay, thanks for the assist. We'll test it and see if that information is updated (although, as you pointed out, it maybe doesn't apply the rule to the APs) Again, I think you're right, and that would be a cosmetic change just to use the FW info as a reference moving forward.

VinoyMohan · ‎Feb 10 2022

Yes, absolutely true. But there is no feature yet and deleting a particular firewall rule using API is also not there right now.

david_n_m_bond · ‎Feb 10 2022

Accepted as solution: "the documentation is way too vague and doesn't contain the right info or correct info." ...as well as providing a solution to the specific nightmare I was suffering! Thanks, @RaphaelL 🙂

RaphaelL · ‎Feb 10 2022

There you go : https://downloadmirror.intel.com/715194/ReleaseNotes_WiFi_22.110.1.pdf

Inderdeep · ‎Jan 28 2022

Yeah that was what Meraki put the document around with MX64/65(W), MX67/68(C/W), and Z3 models only.

Tal · ‎Jan 20 2022

YES!!! solve the problem. Thanks

Ryan_Miles · ‎Dec 9 2021

1 - Understood 😉 2 - Unfortunately uptime is not exposed in dashboard. Please keep submitting feedback that it should be visible! 3 - Support can see the uptime/reboots. So, I'm not sure why/what transpired in the case.

redsector · ‎Nov 10 2021

We are running a Cisco Classic network with Cisco Catalyst switches. They are running with PVST. But we connected Meraki-Switches without any issues. You need to have VLAN1 as standard VLAN. And don´t connect Cisco classic, Meraki, and again Cisco Classic in a row. In the end our core and some distri-switches are Cisco classic and userswitches are Meraki. https://documentation.meraki.com/MS/Deployment_Guides/Advanced_MS_Setup_Guide

John_on_API · ‎Nov 9 2021

We'd use CY for public-facing announcements. XD

AhmedJawad · ‎Oct 12 2021

@bigben386 Thank you very much. that worked!

PhilipDAth · ‎Aug 10 2021

If they are strictly client-serving APs that should be fine. If they are meshing and joining two LANs together - they might pass the BPDUs. Don't know.

GIdenJoe · ‎Jul 18 2021

It does support DHCP snooping but the implementation is different. It does not use a switchport to define where the offer/ack messages can come from but rather the MAC address of the originating server. And it also has DAI which also relies on the snooping database.

RafaelM · ‎Feb 19 2021

After all the conversations that were had in this chat, I am happy to announce that the correct answer is... 🥁🥁🥁🥁🥁🥁🥁🥁🥁🥁🥁🥁🥁🥁🥁🥁🥁🥁 E! Traffic coming from that subnet bound to the internet will leave through the local breakout (split tunnel), and since there is no specific flow preference for that subnet, it will be load balanced! Thanks for tuning in. We're soon coming back with another question!

RaphaelL · ‎Feb 8 2021

That was an easy one , I'm always having to convert the change logs. If only we could get something like Cisco ( service timestamps log datetime localtime show-timezone )

RafaelM · ‎Nov 23 2020

The correct answer is 4. Network-wide > Configure > General. That is the only option that is available for all types of networks, including Camera and combined ones as well. Option 2. Camera > Configure > General is not a valid option on combined networks. I hope that helps!

jdsilva · ‎Jan 20 2020

Yeh I'm with @NolanHerring and I wouldn't think that power changing would drop clients, but I wouldn't bet money on it since I've never dived into that topic. Interesting though.

General-Zod · ‎Dec 21 2019

I have seen this before on a MX using its dhcp mechanism. There was a rouge ip phone that kept changing the last part of its MAC address and it kept consuming IP’s until the pool was exhausted. The dashboard however showed plenty of available addresses. After a call to Meraki support they were able to dig deeper and they could see that the pool was indeed exhausted. It is my understanding that the dashboard only shows successfully accepted dhcp offers. The rogue IP phone in question just kept flipping the last part of its mac and exhausted the pool. Sadly whenever the event occurred I wasn’t available to perform a capture. Hope this helps. cheers

About RaphaelL

RaphaelL

Raphael Letourneau

Community Record

Badges