You could also try ask meraki support to upgrade just one AP The other option would be to move the AP to a cloned network. And upgrade that network.
... View more
I agree. For vpn status i think its better to look at this api and use a low time range. https://developer.cisco.com/meraki/api-v1/get-organization-appliance-vpn-stats/ Then check for example if Mos is not 0 or a certain loss %.
... View more
You have to use the meraki vpn statefull firewall https://documentation.meraki.com/MX/Site-to-site_VPN/Site-to-site_VPN_Firewall_Rule_Behavior Or the group policy stateless rules https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Using_Layer_3_Firewall_Rules
... View more
Are you using nat or bridge mode for the guest? In case of bridge mode, does you dhcp server/scope have free adresses left? What does the wireless health report?
... View more
Yes it works how you described. "IP address of DHCP server to relay to. The IP address must be in a subnet connected to this Meraki network or to a Meraki network reachable through site-to-site VPN. Relaying through a non-Meraki VPN peer is not supported."
... View more
It seems normall behavior for the catalyst. I see it al the time https://community.meraki.com/t5/Dashboard-Administration/Dashboard-change-configuration-quot-new-configuration-retrieved/m-p/277057#M10763
... View more
Could you try to reboot the device. The behavior is a bit consfusion if for example before there was a sfp inserted https://documentation.meraki.com/MX/MX_Overviews_and_Specifications/WAN_Behavior_on_MX75%2F%2F85%2F%2F95%2F%2F105#Truth_Tables Did you also verify the wan4 provider works. For example connecting a laptop to that (new) wan provider router
... View more
https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Blocking_and_Allowing_Clients#Block Sometimes it need a reconnect to force the change. https://documentation.meraki.com/General_Administration/Tools_and_Troubleshooting/Troubleshooting_Group_Policies#Why_isn't_my_Group_Policy_applying.3F
... View more
Yes i see them on regular basis on the catalyst switches. Seems like a default process running every 5-6 hours even if you dont do changes. Contact support to see if they can figure out the ospf part
... View more
I would contact support to ask about this behavior. Maybe there is some vpn problem between the hubs, or some kind of backend override or summarization. It should work as described here https://documentation.meraki.com/MX/Networks_and_Routing/MX_Routing_Behavior#Overlapping_Routes
... View more
Does spoke A and Hub A have the spoke B subnet in the routing table with a green dot ? Is there any dynamic routing between Hub A and Core A?
... View more
Wouldnt even install this version with these kind of bugs MS225 switches may infrequently stop forwarding client traffic until the switch is rebooted In rare circumstances MS225 switches may encounter a software crash that results in a reboot
... View more
Subnets routed/communicating using the vpn routes are not using any nat/pat. There is no need for any nat inside the tunnel as long as every branch uses unique subnets You could use translation but thats not the default. https://documentation.meraki.com/MX/Site-to-site_VPN/Using_Site-to-site_VPN_Translation
... View more
Most times its a side affect of meraki devices when it loses ip config or reboot. Do your mr devices use dhcp for the management ip? Is you dhcp server reachable at all times? Does you upstream router maybe reboot or have other issues? You could try assign a AP with static ip config and see how it behaves. You can also find some older topics on this community like https://community.meraki.com/t5/Security-SD-WAN/The-security-appliance-at-lt-gt-has-detected-IP-conflicts-with/m-p/249499
... View more
Did you look at the utilization chart of this mx. On the org> summary page https://documentation.meraki.com/MX/Monitoring_and_Reporting/Device_Utilization
... View more
