Hi PhilipDAth, appreciate your response. Yeah, it seems this would be a "nice to have" future feature. I think it is extremely useful considering it is a FW device.   ... View more

Yes, when the features ships GA, it will become part of the public API spec, and then the following version of the Python SDK would be generated to include it. ... View more

Oh, you had configured an IPSec on the DB as well... MX IPSec traffic was put into the DB IPSec tunnel.  ... View more

Accepted as solution: "the documentation is way too vague and doesn't contain the right info or correct info." ...as well as providing a solution to the specific nightmare I was suffering!   Thanks, @RaphaelL 🙂 ... View more

I whitelisted the server to wich the remote peers connect to,  and then did a firmware upgrade  and the remote clients connected with no issues, so i will keep this config for now,   i will let know meraki support about this, because i have an open support ticket.   Thanks ... View more

@cmr That makes sense. Thank you! ... View more

Hi Everyone     This technically works if all antennas are the same. (using that antenna)   However, you would lose 5Ghz band which is a big drawback.   You can find more info 🙂 https://documentation.meraki.com/MR/Other_Topics/Frequently_Asked_Questions_regarding_Cisco_Meraki_Antennas   You should never use single-band antennas on a dual-band antenna port. It will work only for that single band and you will have bad behaviors everywhere else. All antennas in these kind of APs should be the same.     ... View more

@rhbirkelund its to cover a link failure between the MX and switch (or indeed a failure of SWX1 itself). If you lose the link from the Primary MX to SWX1 (or SWX1 itself) then both the MX devices will go active, both will try and build tunnels to the hub (and so advertise themselves as the path to their subnets), and if you are running a VIP on the WAN both MXs will claim the VIP. All of this can cause issues of different magnitudes depending on your design.   This occurs because the heartbeats between the MXs stop (due to the link or switch failure), but the MXs are still both alive and so believe the other MX is dead. Having both the links from each MX to both switches adds a layer of protection you wouldn't get otherwise.   It would be great to hear that if there are no active links on the LAN side then a MX won't go 'active', it will assume a standby role, but so far as I'm aware this isn't the case. ... View more

I'd check your actual API usage. How many other users (or applications) have API keys? You have to share the budget with those other folks in the same org. Even if your usage hasn't changed, there are likely others using API more, thus competing with your usage.   In the API docs, check Organizations > Monitor > API Requests for the two endpoints that give you this info. ... View more

>Country Code - Site ID/Code/ - switch Number   I tren to use something similar to @DarrenOC .  Sometimes I used the nearest international airport code as well (depends on how many sites they have in different areas). https://www.ccra.com/airport-codes/  ... View more

@mmistretta wrote: [...] it wasn't until after configuring the local and remote IDs, the tunnel came up. Which is also a change in behaviour for MX15.42.1 firmware. From release notes;   ... View more

I have the same problem. Anyone know if there is a solution? ... View more

I'm betting on the MV72X. ... View more

@rossmeraki glad you got it working - always good to see the simplicity of the Meraki kit in action 😀 ... View more

Regarding the SKU types, the vMX-M does not choose the IP SKU for you. You have to choose it yourself. There’s four different types, and the exact difference in performance I have no idea. But you need to choose the right one, because depending on what you choose you’ll not able to utilise ClientVPN due to some firewall rules that are being applied the IP SKU. ... View more

What about monitoring with statuspage.io for example? ... View more

@NolanHerring after @KarstenI 's post I just upgraded all our sites and they seem to be working okay.  At the moment we have hardly any traffic so cannot be 100% sure that there aren't some issues but I'm planning to go to a mixed site next week and will do some testing to confirm that there aren't issues. ... View more

I have had this happen, in the past, on maybe two occasions, where this fix has worked (and maybe on different cameras, I think) - it certainly hasn't been something I've needed to apply regularly.  If you get regular recurrences, I would raise a case with the Support team and mention what you've had and what you've done. ... View more