Community Record
189
Posts
271
Kudos
19
Solutions
Badges
Oct 8 2024
7:42 AM
8 Kudos
According to another thread (Re: Cisco Meraki MX and Z Series Teleworker Gateway AnyConnect VPN Denial o... - The Meraki Community) a firmware release for these models is coming...
... View more
Sep 30 2024
7:52 AM
Just checked a few different Orgs and they are all showing data for me, would try raising a support ticket.
... View more
Sep 9 2024
5:14 AM
I would not consider this stable firmware as it does not appear under the 'Stable' release tab on the dashboard. We have also had tickets raised where Meraki support engineers refer to this as not being the stable version.
... View more
Sep 9 2024
5:09 AM
Would recommend you contact support they will be able to see if you are having 'panic reboots' and RMA your device...
... View more
Sep 6 2024
7:02 AM
2 Kudos
Getting the same across multiple orgs and shards.
... View more
Sep 6 2024
2:28 AM
2 Kudos
If the VLAN requires absolutely no site-to-site traffic at all then the easier solution would to just stop advertising it to other sites by setting VPN Mode to Disabled...
... View more
Sep 6 2024
2:26 AM
That's right, it only affects VPN traffic. You'd have to create Layer 3 outbound rules (on the Firewall page) if you wanted to restrict traffic to another on-site VLAN or the internet.
... View more
Sep 6 2024
2:22 AM
Yes - use the site-to-site outbound firewall to create a deny policy matching the subnets. Site-to-site VPN Firewall Rule Behavior - Cisco Meraki Documentation
... View more
Sep 2 2024
12:17 AM
Can you share redacted config snippets from both FortiGate and Meraki for us to review?
... View more
Aug 30 2024
12:25 AM
2 Kudos
Site-to-Site VPN Settings - Cisco Meraki Documentation You should be able to specify 0.0.0.0/0 as the remote subnet on the non-Meraki peer, there are caveats listed in the documentation above.
... View more
Aug 28 2024
6:03 AM
If you are storing credentials/keys in .yml files then look into using Ansible Vault for some level of encryption of that data.
... View more
Aug 23 2024
6:45 AM
2 Kudos
The documentation on this feature states: "This feature is only supported for Auto VPN and is not intended to work with non-Meraki VPN peers." Using Site-to-site VPN Translation - Cisco Meraki Documentation
... View more
Aug 20 2024
3:44 AM
2 Kudos
As far as I am aware they act as regular networks in the sense that you set your upgrade window in the settings, they are then eligible for Meraki auto-updates and also self-service firmware updates via the portal. We used to upgrade them and keep them inline with our other security appliance network firmware levels.
... View more
Aug 20 2024
3:01 AM
I will 100% forget to do that 🤣 I'd recommend you raising with support too, that way you will get case updates from them telling you when it is fixed!
... View more
Aug 20 2024
2:50 AM
7 Kudos
We have the same issue when going to the Security Center under the Organization menu, when navigating through the 'Security & SD-WAN' menu for a specific network, it appears to work. Raised with support on 15th August with a response of: "This has been confirmed as a software issue, and engineering has been notified."
... View more
Aug 16 2024
5:09 AM
1 Kudo
We have used cold swap method 1 as described in this documentation successfully many times when upgrading MX's: MX Cold Swap - Replacing an Existing MX with a Different MX - Cisco Meraki Documentation
... View more
Aug 16 2024
3:57 AM
8 Kudos
You absolutely want to go with the new hardware models at this point, the 64 & 100 will not run the latest firmware code either, so keeping it for another 5 years of virtually no updates doesn't make sense if you have the opportunity to refresh! Your current devices also are set to go end of support some time in 2027: Meraki End-of-Life (EOL) Products and Dates - Cisco Meraki Documentation
... View more
Aug 16 2024
12:20 AM
Did not experienced this - have only done it on 1 vMX though...
... View more
Aug 16 2024
12:19 AM
2 Kudos
I only see 18.211.3 being the latest available patch, not .4 ??
... View more
Aug 12 2024
9:09 AM
1 Kudo
Thanks @AmyReyes and congrats to all the other winners!
... View more
Aug 12 2024
7:44 AM
2 Kudos
Yes
... View more
Jul 23 2024
2:09 AM
The device/firewall on the other end of the non-Meraki VPN needs to have your client VPN subnet configured to route down the tunnel, so it knows how to route back to you.
... View more
Jul 23 2024
1:58 AM
2 Kudos
1) Make sure you have VPN Mode = Enabled on your Client VPN subnet on the MX 2) Make sure the remote end includes your VPN subnet in their remote encryption domain
... View more
Jul 23 2024
12:14 AM
2 Kudos
If you want the SSID to work on the APs native VLAN then you need to remove the VLAN tag on the SSID. So set this to Disabled:
... View more
Jul 18 2024
7:32 AM
Yes! But for an OSPF enabled network it is just telling me that BGP isn't running:
... View more
My Accepted Solutions
| Subject | Views | Posted |
|---|---|---|
| 511 | a month ago | |
| 791 | Feb 27 2025 6:39 AM | |
| 693 | Feb 21 2025 1:27 AM | |
| 451 | Jan 14 2025 2:06 AM | |
| 833 | Jan 6 2025 12:32 AM | |
| 549 | Nov 25 2024 7:00 AM | |
| 2098 | Nov 5 2024 8:25 AM | |
| 521 | Nov 5 2024 5:54 AM | |
| 1390 | Nov 5 2024 4:14 AM | |
| 1764 | Sep 6 2024 2:22 AM |
My Top Kudoed Posts
| Subject | Kudos | Views |
|---|---|---|
| 8 | 641 | |
| 8 | 1996 | |
| 7 | 791 | |
| 7 | 1263 | |
| 6 | 803 |
