Waiting for the new community look ...     (no, no, not applying any pressure) 😁 ... View more

Yes, it's annoying. I added a condition when preparing the new object to skip the default. But I don't like that I have to care about things that a computer could easily do better. And I ask myself why the API returns the default rules at all. ... View more

Hmm, what else has an IP on this VLAN? Do a packet capture on the ISP port and look for ARP packets. ... View more

What firewall is it? Looks like a Proxy-ARP misconfiguration. ... View more

I already shouted it; do I really have to type it?   EDIT: I can't believe it. That worked. After typing it changed the form and left a row of approximately one pixel to click on:   ... View more

No: Interface Configuration The MX WAN appliance being configured as a one-armed VPN concentrator should be connected to the upstream datacenter infrastructure using its Internet port, or using the Internet 1 port on devices models with two Internet uplink ports. ... View more

Generally speaking: At least a /29 from each ISP. ... View more

@GIdenJoe wrote: Ok great.  I will have to perform an OTA then to verify. The compare feature in Wi-Fi Explorer Pro is great for showing the differences between two SSIDs. ... View more

The actual standard 802.11-2020 is also free: https://standards.ieee.org/products-programs/ieee-get-program/   For this topic, it is important to notice that WPA3 is nothing more than a specification and certification, mainly based on the features available in the standard. ... View more

One concentrator on stack-member 1, one concentrator on stack member 2. Both MX running in warm spare mode. ... View more

It's in the WPA3 specification:   ... View more

That is easy: Something is going wrong in your network.   (If you need more help, you really have to provide more information. Like are they in the same subnet, what do you see on the DHCP server, what does a capture say, can the AP reach the DHCP server, etc.) ... View more

As @Brash said. The AP will offer the Clients to connect with or without 802.11r. If the client supports it, it will use it. If the client doesn't support it, it will connect the "traditional" way. There is only one gotcha that is probably not relevant to your environment: Some old clients get confused by being offered two options and don't connect at all. ... View more

When the spoke MXes get the default route, they don’t need any specific routes any more. The L3 device connecting the NOC MX needs all details. ... View more

1) Yes 2) so no internet for the branches? Then you only need to announce specific routes from the NOC. 3) Both the MX65 and 84 are outdated and will not run the newest firmware. MX67 is the lowest end model and MX85 the lowest end rack mount model. ... View more

And AKM5 instead of AKM1. ... View more

You want to provide internet access for the branches through your NOC, right?   1) Yes, you can do it that way. I would typically use a firewall DMZ. But in your setup, the internet traffic should flow through the content filter, which points to a VLAN on the Core. 2) The VPN-Concentrator only needs a default route. But your infrastructure needs routes for all branches to the VPN concentrator. 3) No Problem. Whichever model fits the branches needs. It is not the MX65 nowadays, but anything can be mixed from MX67, 68, 75, and up.   For the redundancy: With Meraki, you only need the same model MX for HA but no additional license. This makes HA quite "cheap". ... View more

It's not built-in, but after matching this activity on your log server, you could send an API call to block this user.   And ... are your admins feeling bored at work? ... View more

The most likely usage is some kind of internal traffic redirection. I really would like to know. ... View more

Oh, I think the "Documentation Feedback" forum is the right place to ask that something gets documented when a device does something specific. ... View more

Well, it is not a customer network. It is 100% its intended use: preparing a new chapter in a training course.  ... View more

It could be easily supported as all needed building blocks are already available on the AP. I would expect that the demand is quite low as this is more of a niche feature. I just gave feedback on the config page that WPA3 is missing. ... View more