Meraki

WadeAlsup · ‎Nov 9 2017

Hi @Mike_Rapp, I think you'll want to reach out to Meraki support for in depth hardware diagnostics.

WadeAlsup · ‎Nov 7 2017

Hi @Ahmad_Qattan, You can apply group policies to entire vLans under Security Appliance > Addressing & VLANs. Then use individual client policy overrides if you wanted. Or if it's an entire vLan that you're wanting to apply the policy to, just do it from there.

WadeAlsup · ‎Nov 7 2017

Hi @CherylA, While I'm not certain that there is an option to disable wifi, I believe you could Enforce Wifi Whitelisting which allows devices only to connect to networks that are setup within a configuration profile. Then setup bogus SSID credentials (something random enough that it shouldn't be used). Keep in mind that this is a restriction for Supervised iOS devices on 10.3 and above. This would be setup under Systems Manager > Settings > Restrictions > iOS Restrictions (supervised)

WadeAlsup · ‎Nov 7 2017

Hi @Steve-Potter, I had a similar issue that I ran into a while back. It turned out that the content filtering was still being applied to the access point itself. I created a Group Policy with a content filtering override and applied that to the management vlan that the access points fell into. You might check there?

WadeAlsup · ‎Nov 6 2017

Sent my wife pictures of my sweet new couch blanket...but as soon as she saw it had a pocket, she called dibs. I'm gonna have to see if I can earn a second one!

WadeAlsup · ‎Nov 1 2017

@edunnington, if you already have your dashboard setup with the device added... You can go to Help > Firewall Info and it should show you exactly what is needed for cloud connectivity for the devices within your Meraki network. (I realize this may only be the single MS that you have)

WadeAlsup · ‎Nov 1 2017

@Mr_IT_Guy, that is one adorable doggo! I would totally buy a my size matching Meraki sweater if it was available. Great job guys, way to support the growing community!!!

WadeAlsup · ‎Nov 1 2017

Hi @edunnington, The beauty of Meraki is that you can configure the device itself in the dashboard before it is unboxed and connected. If you'd like to check your configurations are correct or test them beforehand, you should be able to configure an open port (assuming you have one) on the SonicWall, plug your new MS into it to get it connected and allow the config to push down to the device.

WadeAlsup · ‎Oct 27 2017

@dlevens HAHA...I'm just overlooking all sorts of things today.

WadeAlsup · ‎Oct 27 2017

@dlevens, I found it. Organization > Summary Report and then filter on your MX for your site. You get a usage over time area. Make sure you are using the New Version of the page as well.

WadeAlsup · ‎Oct 27 2017

Looking at the legend, the dark blue is going to be download while the lighter blue color here is in total. I think I've done it before, but we should make wishes for upstream to be added in addition to these? Security Appliance > Appliance Status > Uplink > Live Data > Uplink traffic

WadeAlsup · ‎Oct 26 2017

All conversation taken in mind, using the Security Appliance > Appliance status > uplink and manually monitoring live stats during peak times based upon traffic analytics/network clients is the only way within dashboard you could get this information currently. I personally cannot attest if there is an API solution here.

WadeAlsup · ‎Oct 26 2017

@Rudi, be sure your management vLan still has a route to the internet to reach your cloud dashboard. I use reservations for all management addresses as well.

WadeAlsup · ‎Oct 26 2017

Hi @Rudi, See https://documentation.meraki.com/MR/Monitoring_and_Reporting/Understanding_and_Configuring_Management_VLANs_on_Cisco_Meraki_Devices#Tagging_a_Management_VLAN_on_a_Cisco_Meraki_Device I think by default, yes, the management traffic is untagged. You specify the vlan on the MR itself and allow it through your trunk port. Does this help your scenario?

WadeAlsup · ‎Oct 26 2017

Hi @dlevens, I'm not sure if this is the best way or not, but it's fairly simple for me to see what prolonged peaks were at. On the Network wide > Clients page, I'll filter by "only security appliance clients" and over the specified amount of time (such as for the last 30 days). If anyone else has a better way to see this, I'm all ears.

WadeAlsup · ‎Oct 25 2017

See also: https://documentation.meraki.com/zGeneral_Administration/Managed_Service_Providers_(MSPs)

WadeAlsup · ‎Oct 24 2017

Hi @Eliudprom, The CMNA is for Meraki partners and intended for those selling Meraki. https://meraki.cisco.com/partners/ Meraki Masters are also for partners and I believe are offered by invitation only (think exclusive). See these threads: https://community.meraki.com/t5/Off-the-Stack/Meraki-Certifications/m-p/450 https://community.meraki.com/t5/Off-the-Stack/Meraki-Masters-how-can-I-earn-an-invitation/m-p/601

WadeAlsup · ‎Oct 23 2017

Hi @Diane, I agree with @jared_f and have seen the same thing. @alexis_cazalaa hit the mark. I've also seen varied timing on request results being brought back for the device in the dashboard. Meraki Documentation on Status NotNow

WadeAlsup · ‎Oct 20 2017

Nice!!!

WadeAlsup · ‎Oct 20 2017

Hi @jameshottinger, I have a link to a Spiceworks article saved in my notes from when I was trying to do the same thing. I never could get a GPO that would include the pre-shared key...but I was able to use the CMAK (Connection Manager Administration Kit) and create a configuration that works for our scenario. It may be worth looking into. https://community.spiceworks.com/topic/417332-gpo-to-configure-l2tp-vpn https://www.windows-server-2012-r2.com/create-a-connection-profile-with-the-cmak-wizard.html

WadeAlsup · ‎Oct 19 2017

Hi @Danjns, I have not tried this myself, but I think you could create a Time-Based Tag in Systems Manager > Configure > General specifying the hours that you want. Then tie that tag to a SM profile containing your VPN for the devices. Then tag your devices with the time-based tag. Let me know if that will work!

WadeAlsup · ‎Oct 19 2017

Hi @__Nathan, I believe the MX is still using Webroot's BrightCloud for content filtering category definitions. You can find an updated list on their website: http://www.brightcloud.com/tools/change-request-url-categorization.php#catdescription @CarolineS, do you think Meraki could reference the BrightCloud category list on the content filtering documentation page https://documentation.meraki.com/MX-Z/Content_Filtering_and_Threat_Protection/URL_Blocking_and_Whitelisting_Patterns?

WadeAlsup · ‎Oct 3 2017

Great job you guys! I'd be lying if I said I haven't already found useful info between your posts and responses. Thanks @PhilipDAth, @Mr_IT_Guy, @MilesMeraki, and @BHC_RESORTS!!!!

WadeAlsup · ‎Sep 13 2017

The closest thing I can think of would be Configuration Templates. Found under Organization -> Monitor -> Configuration templates

WadeAlsup · ‎Sep 11 2017

I believe the entire MX line of security appliances either have a second dedicated WAN port or can be configure to use another port for WAN as well. EDIT: Sorry, I missed the "more than 2"

About WadeAlsup

WadeAlsup

Community Record

Badges