How it the trunk configured on the 9300 port and on the upstream switch port?   Where is the dhcp server connected and on which vlan   Where is the client connected and on which vlan ... View more

It somehow detects 172.16.252.19 as packet on the lan side.  You have a config with static routes? Dynamic routing? Or just vlans?   172.16.252.19 is a ip from a spoke? You could try running a pakket capture of the lan side mx with filter "host 172.16.252.19" ... View more

Every wan interface needs to be able to talk to the meraki services/ internet  You basically need something like this design https://documentation.meraki.com/MX/Site-to-site_VPN/Configuring_Site-to-site_VPN_over_MPLS ... View more

Are you try ing to mix them in co term?   Q: Can I mix MR Enterprise and MR Advanced licenses in a co-term organization?    A: No, all MR licenses must have the same edition (MR Enterprise or MR Advanced) across a co-term organization. You can use MR Upgrade licenses to convert your existing MR Enterprise licenses into MR Advanced licenses and convert your organization’s Product Edition from MR Enterprise to MR Advanced.   https://documentation.meraki.com/General_Administration/Licensing/Meraki_MR_License_Guide#Co-term_Licensing_Model_FAQ ... View more

I supose that is incoming traffic? Because warm spares dont support ipv6 so they dont reply to any ipv6 traffic   ... View more

Hmm that would be new, i dont see it over here, only for the ipv6   Can you check if this early access is enabled? NAT Exceptions with Manual Inbound Firewall ... View more

You can't , must be same model.   "Note: The spare MX must be the same MX model as the primary. Warm spare functionality is not supported between different MX models" https://documentation.meraki.com/MX/Deployment_Guides/MX_Warm_Spare_-_High_Availability_Pair ... View more

The deny all should be only for ipv6.   Unless you running a early access: NAT Exceptions with Manual Inbound Firewall   ... View more

If you mean med, no ... View more

I dont even  get the graph/circle anymore ... View more

.100 is not part of that /26 subnet   You would need to set it to  /24 from a /22 subnet pool.   But you mg will probably end up using 192.168.0.0/24 in that case, because you cant choose it. https://documentation.meraki.com/MG/MG_Best_Practices/MG_Wireless_WAN_Dashboard_Settings   You could try making a meraki support case and ask if they are able to assign/force it   ... View more

Best way to understand would be to read this docs https://documentation.meraki.com/MX/Networks_and_Routing/MX_Addressing_and_VLANs   https://documentation.meraki.com/MX/Networks_and_Routing/Passthrough_Mode_on_the_MX_Security_Appliance_and_Z-series_Teleworker_Gateway   https://documentation.meraki.com/Architectures_and_Best_Practices/Cisco_Meraki_Best_Practice_Design/Best_Practice_Design_-_MX_Security_and_SD-WAN/Meraki_SD-WAN#Key_Concepts   Also a big differenciator was that one armed concentrator could run bgp, but now in latest mx firmware routed mode can do this to   ... View more

Both can be used. If you have configed the load balancing/ flow pref on mx. You already made the drawing   ... View more

Yes, you can use any mr on that license .   https://documentation.meraki.com/General_Administration/Licensing/Meraki_Co-Termination_Licensing_Overview#MR_Licensing_Options     ... View more

You can find a example here https://documentation.meraki.com/Architectures_and_Best_Practices/Cisco_Meraki_Best_Practice_Design/Best_Practice_Design_-_MX_Security_and_SD-WAN/SD-WAN_Internet_Policies_(SD-Internet)#SD-WAN_Internet_policies_configuration ... View more

You can only use ip Or With sdwan plus lic you can specifiy from a list of aplications.   You could try a nslookup to the url and add all the IP's from the response. But that response can change over time   ... View more

Are there any AP's with a management address of 10.129.5.2-127? ... View more

  I see them online but not from meraki. This is the suported list. But it could stil work https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Small-Form_Factor_Pluggable_(SFP)_and_Stacking_Accessories   Did you ever hit near 1Gbit up or down on any AP? You would need to use 160mhz channels to go past 1Gbps on a normal 2x2 wifi client   How are you going to power the AP? Poe adapter?   I personally wouldnt bother upgrading any non 6Ghz capable AP to 2.5Gbit     ... View more

When you look at stack b switch2. Who does that switch report as root?   ... View more

Hi,  Is the device online on the dashboard? The password should be on your meraki dashboard. Network-wide >general> device config   You can also try,  use the serial number of the device (upper case letters and dashes) as the username with no password.   If it doesnt reset pressing the button 30 seconds then you should contact meraki support     ... View more

That doesnt work,   I do know its possible with a one armed concentrator-hub design ... View more