Wow!  What an opportunity.   The first thing to note is that the AP licence is the same for all APs.  So if you replaced your old MR62 with a newer AP you wouldn't need to re-purchase the licence for that AP.  So that makes upgrading the main AP cheaper.   The units you should probably be looking at are: MR74: https://meraki.cisco.com/products/wireless/mr74 MR70: https://meraki.cisco.com/products/wireless/mr70   What kind of antennas does your current MR62 have on it?  It might have a model number on it.  If you are not sure could you post a photo.   How are the APs currently powered?  Do they plug into a mains power point, or some kind of PoE injector or maybe even an PoE switch?   You will get the best results if you only use Meraki APs and get rid of things like the TP-Link AP. ... View more

I agree with @BlakeRichardson .   I have had no end of problems with older Macbook Pro's, especially around roaming when there are multiple APs. ... View more

ps. Are you only running OSPF?  If you are also running BGP you could consider going the BGP Beta and BGP peering with the MX250 instead.  The BGP has been around for a while in MX so should be pretty solid. ... View more

As @BlakeRichardson says, that will work fine.  I would personally use OM3 or OM4 fibre. ... View more

Have you tried ClientVPN from a different Internet connection? ... View more

Are you sure you have enabled Client VPN on the vMX? ... View more

Back up again now. ... View more

Buggar.  Just this part of the world has no reachability then. ... View more

I would probably look at the MR53 rather than the MR52.   In particular take a look at the MR53E.  It allows external antennas.  If you are roof mounting at 25ft considering an antenna like this: https://meraki.cisco.com/products/wireless/antennas-power#MA-ANT-3-D5 If you are going above 25ft you could also consider: https://meraki.cisco.com/products/wireless/antennas-power#MA-ANT-3-F5   Both of these antennas direct the majority of their RF energy downwards rather than wasting energy sending it up and sideways. ... View more

It is unlikely to be a recursive DNS server, but it is authoritative for cisco.com, so should be able to resolve sub domains (at least give out and stub records). ... View more

I don't blame them @TNelson .  An MR18 is only 802.11n while an MR33 is 802.11ac.  They are going to prefer an 802.11ac AP over an 802.11n AP as it has the potential for much higher performance. ... View more

> I don't want to use template because i want to have different settings for each network eg. vlans and lan adresses.   With templates you have to have the same VLANs at each site, but you can change the IP addressing of each VLAN.   Why would you want each spoke to have different performance classes?  Normally you would have a uniform policy over a network. ... View more

I can see a lot of complexity, as it will need a whole new set of antennas with different spatial seperation.   If you are wanting high density it would be the MR55E.  That has 10 radios - so 10 antenna cables ...  (8 spatial radios and a scanning radio and a blue tooth radio). Can you imagine how thick that will be if all put into one cable and one connector? ... View more

Are you running the 25.13 firmware?   I would at least raise the minimum transmit power.   I think I would go back to support and say that the CE regulatory domain allows up to 20dBm/100mw of power - and the interface does not allow it to be selected.  That is a bug. ... View more

I don't believe there is such an API.   Typically when deploying a lot of sites that are the same you would bind the networks to a template. https://documentation.meraki.com/zGeneral_Administration/Templates_and_Config_Sync/Managing_Multiple_Networks_with_Configuration_Templates   What you configure on a template will be used by every network bound to it.  If you subsequently change a template it will update every network bound to it.   You can use this API to bind a network to a template. https://dashboard.meraki.com/api_docs#bind-a-network-to-a-template   If you don't want to use configuration templates then you can setup a single network exactly how you want with all the rules, and then when you create a new network you can reference that one you setup ( copyFromNetworkId). https://dashboard.meraki.com/api_docs#create-a-network   You might also want to consider using the bulk network creation tool.  You put all the info into a CSV and then import it.  Note that it creates a seperate network for each type of device, which you then have to combined again. https://documentation.meraki.com/zGeneral_Administration/Templates_and_Config_Sync/Using_the_Bulk_Network_Creation_Tool ... View more

ps. More APs often gives a better result than more power ... ... View more

Are you sure you have the country code set correctly in the network?   You can use an RF profile to set the transmit power. https://documentation.meraki.com/MR/Radio_Settings/RF_Profiles#Transmit_Power_Range ... View more

The first thing to note is to make a device supervised requires that it be wiped.   You need the company that sold the Apple devices to you to DEP register them.  Failing that the only way to put them into supervised mode is to use Apple Configuration, which only runs on Apple Mac's. ... View more

For the client VPN issue make sure you are allowing the below in the AWS rules for the vMX (assuming you are using client VPN to the vMX). UDP/500 UDP/4500 I would also allow: IP Protocol 50 (ESP)   The hosts in AWS have Windows Firewall disabled? ... View more

That is a great idea @SoCalRacer .  A simple script fired off by the Windows Task Scheduler.   ... View more

All options I can think of require 2 rules. ... View more