Meraki

DHAnderson · ‎Sep 22 2021

@akehn Any connection from MX to MS, or MS to MS or MS to MR is considered an uplink. The switch port settings on the MX are on Security & SD-WAN -> Addressing & VLANs -> Per-port VLAN Settings Both connections for an uplink should have the same VLAN IDs. -Dave

DHAnderson · ‎Sep 22 2021

Doe the VLAN IDs on the MX ports match what the switch uplink ports are set to?

DHAnderson · ‎Sep 18 2021

@delfuego I haven't got anything back since signing up for the beta. Did you get an email with the URL and credentials? -Dave

DHAnderson · ‎Sep 17 2021

@Bruce Thank you. I just opened a support case for that!. -Dave

DHAnderson · ‎Sep 17 2021

I have a MG21 connected to Wan2 and fail over works a little too well! I would like to setup firewall rules to block either certain networks or certain web applications when running on Wan2 to cut down on cellular charges. I have cellular firewall rules enabled, but they don't take effect for Wan2. Is there anyway to accomplish what I am trying to do? Thanks, -Dave

DHAnderson · ‎Sep 17 2021

Thanks James! I signed up for the beta this morning! -Dave

DHAnderson · ‎Sep 14 2021

@Marc_Abaya , No, however credentials are cached on the device, so username / password is usually done infrequently. When a user is suspended or deleted, the user cannot sign into their machine or the WiFi. - Dave

DHAnderson · ‎Sep 14 2021

@Marc_Abaya , JumpCloud also has Active Directory integration, so users are synced between Cloud applications and local accounts. Add in the SSO support and Zero Trust, it is a powerful system. Pricing can be by ala carte or by package, with discounts for education and non-profits. - Dave

DHAnderson · ‎Sep 14 2021

@Marc_Abaya You are welcome. The RADIUS setting support 2FA if that would suffice for your needs. Also, JumpCloud Protect Push notifications use Public / Private keys for authentication. -Dave

DHAnderson · ‎Sep 14 2021

@Marc_Abaya That depends on your use case. For Cloud Directory and RADIUS it would retail for $5 per month. It goes up from there depending on features. You can see all the pricing here: https://jumpcloud.com/pricing I am a JumpCloud Partner so I can walk you through a demo and explain how it all works. I can also help with purchasing, configuring and debugging, If you like. If you have a lot of users and are worried about price, I can work with you on that too. -Dave

DHAnderson · ‎Sep 14 2021

@bento23 You could still use RADIUS for the WiFi, without a JumpCloud agent on a Chromebook or phone. You will need the users defined in JumpCloud, and optionally added to a group (Say, WiFi users). Then configure a RADIUS setup and assign the group to it. For extra security, you can setup RADIUS with 2FA.

DHAnderson · ‎Sep 13 2021

The process for JumpCloud would be: 1 import AD users into JumpCloud 2. Create a group and add the users who should have access to the WiFi 3. Go to RADIUS and setup RADIUS and assign the group to the RADIUS Configuration. 4. Setup SSID to use Enterprise with my RADIUS server and enter in the information for JumpCloud's RADIUS servers PM me if you want more information about JumpCloud. -Dave

DHAnderson · ‎Sep 13 2021

I second the motion for JumpCloud. The have 2FA Push notifications for signing into JumpCloud and RADIUS and LDAP, and coming soon are push notifications for RADIUS.

DHAnderson · ‎Sep 13 2021

You can use JumpCloud for RADIUS authentication. While there is not currently a JumpCloud client app for Chromebooks, they can still use RADIUS authentication, and to an extent, Zero Trust. PM me if you want more information about JumpCloud - Dave

DHAnderson · ‎Sep 13 2021

I use JumpCloud. It as basically AD in the Cloud, plus SSO, RADIUS, LDAP and Zero Trust and more. PM me if you want more information on JumpCloud. - Dave

DHAnderson · ‎Sep 2 2021

@charles07 If you have an Active Directory server, you can set the VPN up for RADIUS authentication. If you don't have AD, you could use a service such as JumpCloud for their Radius server. If you want to find out more about JumpCloud, pm me. - Dave

DHAnderson · ‎Sep 1 2021

It has come back up for me now. It must be transient issues and it has happened a couple of times now.

DHAnderson · ‎Sep 1 2021

The Dashboard seems to be down again. I am able to sign in, select a customer, but the page hangs or takes an extremely long time to display.

DHAnderson · ‎Aug 10 2021

@zball8888 Meraki has announced that they are working on it, so it is on the way. - Dave

DHAnderson · ‎Jun 17 2021

I am working with customer who is looking at getting a SAS service that runs on Azure. The vendor said that they need to charge extra because my client has a Meraki firewall. When I pressed them on that they replied that my clients needs a vMX to get the site to site to work, because Meraki isn't really compatible. Upon research I see that there is value in using a vMX over directly connecting to Azure. The vendor never said the upcharge for the Meraki, but it looks like a couple of hundred of dollars a month. I will be quoting a vMX-S. It is my understanding that the vMX installs as a network adapter. I am new to all of this, so I don't really know what monthly Azure costs for a vMX are. Is a couple of hundred a month reasonable in anyone's experience? Thanks in advance. -Dave

DHAnderson · ‎Jun 16 2021

I have a MG21 connected to a MS120-24P. The switch is powering the MG21. The port the MG21 is plugged into is set up as Access (not Trunked) and a VLAN is specified. There is another port on the switch set as Access and the same VLAN. The cable plugged into that port runs into Wan2 on MX65. This setup started working once I had the correct APN specified in the MG21

DHAnderson · ‎Jun 11 2021

Has anyone taken a look at the Meraki.com page today? https://meraki.cisco.com/product-category/security-sd-wan/

DHAnderson · ‎May 20 2021

I probably shouldn't include the time I had to write a driver in 11 bit PP code so a Control Data Cyber could talk to a PDP 1123. With no debug capability, I was reduced to run until Cyber crash. The look at a memory dump. More recently there have been countless times when I have walked into a new client, and no one knows the passwords for the firewall, switches or access points. A factory reset and rebuilding things from scratch was the work around. I have also been locked out of HP switches, when the Cert expires and the only access was via HTTPS. So far I have sold 3 Meraki switches because no one could remember the password for the original switch. I have also had a SonicWall that every firmware upgrade corrupted the config so the device so it wouldn't load. Finally, Meraki has allowed me to grow my business! I can manage all my clients networks from anywhere, and with one account. This makes part of my business model scalable!

DHAnderson · ‎May 18 2021

The dashboard just came back for me! Unfortunately, my client is still down. -Dave

DHAnderson · ‎May 18 2021

@BrandonS A local college is building a new dorm. At 9:30 AM the power went out at the college. My client is about 5 blocks away. I am betting that someone dug up a power line and fiber conduit. I did not know that Meraki, or your client was on that same fiber 😉

About DHAnderson

DHAnderson

Dave Anderson

Community Record

Badges