Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
About Roger_Beurskens
Roger_Beurskens
Building a reputation
Member since Sep 7, 2017
Aug 3 2021
Community Record
95
Posts
93
Kudos
4
Solutions
Badges
Oct 8 2020
10:03 PM
1 Kudo
Could you shed a bit of light on the content? How does it compare to previous ccna/ccnp level certifications?
... View more
Oct 8 2020
7:14 AM
2 Kudos
Well, it's a ccnp specialization level... so it could be a real cisco exam 😛 Also really interested in it.
... View more
Oct 7 2020
7:33 AM
1 Kudo
Interesting because i got the idea to do this from meraki support. they said the way vpn is handled within the firmware is completely different from MX15.xx but nice to see it also solved your problem.
... View more
Sep 14 2020
7:30 AM
So, you were logging your own syslog message over the tunnel... generating an syslog message.... a loop spanningtree can't do anything about 🤣 But nice find 👌
... View more
Sep 14 2020
4:41 AM
1 Kudo
Is it 1 network or do you have seperated networks for ap's and switches?
... View more
Sep 11 2020
1:27 AM
i had a personal cco due to certifications.... when moving to the company i work now, it was added to the parter so i have rights to partner options ( also the umbrella partner login) but the thing i did was change my primary mail adress to my company one. When i would change job, i'm changng it back to my private gmail adress.
... View more
Sep 11 2020
1:14 AM
1 Kudo
What problems do you have with the Cisco SSO? I thnk it's great.. i can log in to all 250000 different cisco websites with just one logon. I'm more worried about the complete cisco website/portals chaos.
... View more
Sep 11 2020
1:12 AM
Hi, I've checked... I'm running a MX67 with 15.35 at my home(lab) and 3 MX57w's with 15.33 at a customer ( due to vpn issues) and i also don't see this behavior there...
... View more
Sep 7 2020
5:13 AM
1 Kudo
Using it at my home "lab" with 3x MR33 ( and a Mr32 that sticks at mr26,x) without a problem.
... View more
Sep 7 2020
5:09 AM
We also have MX250 running at a customer in three DC's.. Same "problem" because wou only could connect at 1Gbit with copper (at least preferred by co-lo partner) We also used the original meraki rj45 convertor on 1gbit. Works like it should.
... View more
Aug 25 2020
5:00 AM
3 Kudos
I would aks myself if an "outgoing layer 3 deny all rule" is still best practice... what would the reason be to block ALL outgoing traffic to internet. Yes it is the most secure... secure what? Malware wil just use normal ports and without something like AMP, of layer7 firewalling it wil just make a connection to some server on a default http or https port because 99% of the firewalls have that allow rule..
... View more
Jul 21 2020
7:05 AM
5 Kudos
Just a short answer. Switch keeps working and forwarding traffic as how it is configured. Only thing is, you're not able to configure the switch settings ( only some real basic things via local status page ) when it has no connection to the meraki cloud portal.
... View more
Jul 21 2020
2:08 AM
If possible you really want to go the Radius way. When using NPS, you can pretty easy use MFA through Microsoft 365 with AD sync. I also see this is as a big plus.
... View more
Jul 21 2020
1:56 AM
2 Kudos
Indeed, same here.. Something changed but didn't notice directly what. Looks more slick/up to date now.
... View more
Jul 19 2020
11:49 PM
3 Kudos
Little last update.. upgrading the MX's in the full network from MX14.40 to MX15.33 Beta also solved unstable non meraki site-to site connections on the fixed line locations. Meraki support hinted that 14.40 could have some non meraki vpn instability issues in the firmware.
... View more
Jul 2 2020
11:59 PM
1 Kudo
Found the issue, and created an other one wih this solution 😉 NAT-T was disabled on the non meraki peer in the DC we already had 2 meraki locations with a fixed line working over a site-to-site for some months without a problem. Funny thing is, when enabling NAT-T on the Sophos UTM, everything works for the connections via the MG21 but the other tunnels are unstable... Disabling NAT-T at the datacenter solved the issues for the 2 fixed meraki sites according to the customer. What worries me, is that I still see the SA expiring after 3 minutes for these 2 fixed sites in the meraki logging even though the timers are at 28800 and 3600.... Weird things happening.. In the mean while, Meraki AutoVPN is still working as a charm. To bad there is still no vMX available for vmware as we have a lot of customers running on a IaaS platform.. I've asked Meraki Support if they changed anything in the background after i asked them for help. I'll keep this port updated when i know more.
... View more
Jul 1 2020
4:14 AM
Hi, Got the simcard of the customer itself.. It's a corporate sim ( Dutch KPN ) with the correct APN setup. With the default APN (internet) it was completely firewalled so the mg21 didn't even connect to the meraki cloud portal. The correct APN ( advancedinternet) everything works except the non Meraki site-to-site. Autovpn works like a charm... As i'm end of options i'll ask Meraki support if they maybe can see a bit more on the mg or mx what's happening.
... View more
Jun 30 2020
12:10 AM
That was also an idea i had... but why would the tunnel come up completely than? i would expect it would be able to complete phase 1 of 2. I've got an other simcard from other provider for testing today so i hope this would solve it.
... View more
Jun 29 2020
11:19 PM
Hi, I'm setting up de MG21 for the first time and i'm running into an issue. Before asking support I wanted to ask if anybody here experienced the same. The setup we have is MX67 firewall and a MG21 as secunday WAN. The enviroment of the customer is running some other MX67c's in the field and a non meraki firewall in the datacenter (Sophos UTM virtual). Using a fixed line on the MX67 everything works like it should be, autovpn to the other meraki locations and a non meraki site-o-site to the datacenter, just like the other 2 locations. Doesn't matter if we use WAN1 or (converted) WAN2 on the firewall, it works flawlessly. Tunnel comes up and I can reach the servers in the DC. When i change the fixed line for an MG21 I get the next behavior. - Everything on interne reachable - Meraki Auto VPN works perfect to the other Meraki sites, everything is reachable - Non-Meraki VPN tunnel comes up, phase 1 and 2 SA is up and running, but no traffic is possible between the subnet behind the MX67 and the DC. Doesn't matter if the MG21 is connected to WAN1 or WAN2. Anybody got a clue?
... View more
Jun 24 2020
10:52 PM
I expect you have to leave them in an other network.. AP's in the same network run the same firmware. With some testing at my home lab, 3 MR33's AND my mr32 are on 27.1 Enabling iPSK on my primary SSID makes my MR32 unusable. It does transmit the SSID but no authentication is possible.
... View more
Jun 12 2020
11:05 AM
3 Kudos
Congrats all !!
... View more
Jun 12 2020
10:17 AM
1 Kudo
yes yes place 68 now..... But just gonna mis out 22k points from 1 pc 😞
... View more
Jun 12 2020
8:03 AM
1 Kudo
GO GO GO GO !!!! 😄 P70 is the target now 😉
... View more
Jun 9 2020
3:40 PM
I have had something similar with a Sophos UTM firewall at a customer in the USA. Something weird with cablemodem and ip assignement, The ISP fixed it after some time.
... View more
Jun 7 2020
11:05 AM
2 Kudos
i threw an extra GTX1050 into the game 😉 Really have to try to get in the top75+ 😉
... View more
My Accepted Solutions
| Subject | Views | Posted |
|---|---|---|
| 7143 | Jul 2 2020 11:59 PM | |
| 1946 | Feb 2 2020 7:52 AM | |
| 7856 | Nov 7 2019 9:52 PM | |
| 3400 | Aug 29 2019 3:19 AM |
My Top Kudoed Posts
| Subject | Kudos | Views |
|---|---|---|
| 11 | 38047 | |
| 7 | 40575 | |
| 5 | 2965 | |
| 4 | 6448 | |
| 3 | 4347 |
© 2024 Cisco Systems, Inc.
