The Meraki Community
Register or Sign in
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
  • About JF1
JF1

JF1

Here to help

Member since Dec 11, 2018

Friday
Kudos from
User Count
CptnCrnch
Kind of a big deal CptnCrnch
2
TheSevenWharves
TheSevenWharves
1
PhilipDAth
Kind of a big deal PhilipDAth
2
View All
Kudos given to
User Count
w153r
w153r
1
Johnfnadez
Johnfnadez
1
trick227
trick227
1
MarkDSI
MarkDSI
1
BrandonS
Kind of a big deal BrandonS
1
View All

Community Record

6
Posts
5
Kudos
0
Solutions

Badges

First 5 Posts
Lift-Off View All
Latest Contributions by JF1
  • Topics JF1 has Participated In
  • Latest Contributions by JF1

Security Centre / Threats

by JF1 in Security / SD-WAN
2 weeks ago
2 weeks ago
Hi   Im hoping someone can clarify something. We have a pair of MX250s in an active passive build. These have the Advanced Security Licence. I recently noticed that in Security Centre a number of "Threats" had been allowed. This was the case even though the Threat wasn't whitelisted, and therefore in my mind the traffic should be blocked. I raised a case with Meraki support who advised "  I was analysing these logs and saw that the same signature was showing as blocked previously, so I understand that the dashboard might be misleading in this case. Basically, the MX will look up the flow based on the source and destination information associated with the event along with the flow direction. If the flow that created the event is not found, then the MX would log the flow as "Allowed". This means that it is possible that the flow was dropped before the MX looked for it." Essentially (if my understanding is correct) the Dashboard and Security Centre is misreporting and these Threats were actually dropped. Essentially   false  flag alerts. I questioned with Meraki support who advised this is design intent and suggested I raise the good old "make a wish" if a change is needed.   Can anyone explain this in greater detail, does this make sense to you as it doesn't to me....am I missing something or is this a design flaw?   Thanks in advance.     ... View more

Re: Nessus Scan - results in MX crash

by JF1 in Security / SD-WAN
‎05-23-2022 02:55 AM
2 Kudos
‎05-23-2022 02:55 AM
2 Kudos
For those interested some further feedback on this issue. The firmware we are running 16.16 - there are some known issues relating to IPS / IDS that can result in a memory leak and hardware crash. A new firmware release is expected early June that addresses this issue. Also, in regards to StevePhipps comment - from our experience when the scan was ran there are a number of "connections" initiated to the security appliances (prior to the scan under BAU this connection count was around 100k, when we initiated the scan this jumped to over 500k), these "connections" lead to an increase in CPU and memory usage and in our scenario this led to a drop in performance.  ... View more

Dashboard Issues Today 16:58 - 17:10 ish GMT??

by JF1 in Security / SD-WAN
‎05-06-2022 09:20 AM
‎05-06-2022 09:20 AM
Hi   We had a number of sites loose connection to the Meraki Dashboard between 16:58 and 17:10. I am trying to identify if this was a network outage or a Dashboard issue. Did anyone else recieve a series of "network has become unreachable from the Meraki cloud." and "network regained contact with the Meraki cloud." between these times?   Thanks   ... View more

Meraki Dashboard Status / Availability Page

by JF1 in Dashboard & Administration
‎04-11-2022 06:19 AM
1 Kudo
‎04-11-2022 06:19 AM
1 Kudo
Hi,   I think this maybe more of a wish / design request, however does anyone know if a Meraki Dashboard status page exists? Reason I ask, on a number of occasions we have received alerts advising of devices losing connection. These can be a good indicator of a network outage, however recently the issue has been with the availability of the Meraki Dashboard. hence me having a mild panic attack when actually the issue is availability of the Dashboard.   It would be beneficial if Meraki had some form of Dashboard status page, or released live notifications regarding issues of this nature?   Any advise / thoughts would be appreciated.   Regards   ... View more

Re: Nessus Scan - results in MX crash

by JF1 in Security / SD-WAN
‎04-01-2022 03:09 PM
‎04-01-2022 03:09 PM
We do have an open case reference 07832365 ... View more

Nessus Scan - results in MX crash

by JF1 in Security / SD-WAN
‎03-30-2022 03:35 AM
2 Kudos
‎03-30-2022 03:35 AM
2 Kudos
When performing a Nessus security scan, our MX250 appliance becomes unresponsive and crashes.  We have noted that if we disable IPS / IDS this behaviour does not occur. Therefore whilst the scan was running we disabled IPS / IDS and have since re-enabled.  However we don't believe this is normal behaviour.   Does anyone have any experience of this? We do have a ticket open with Meraki support however feedback to date hasn't been helpful.   thanks in advance ... View more
Kudos from
User Count
CptnCrnch
Kind of a big deal CptnCrnch
2
TheSevenWharves
TheSevenWharves
1
PhilipDAth
Kind of a big deal PhilipDAth
2
View All
Kudos given to
User Count
w153r
w153r
1
Johnfnadez
Johnfnadez
1
trick227
trick227
1
MarkDSI
MarkDSI
1
BrandonS
Kind of a big deal BrandonS
1
View All
My Top Kudoed Posts
Subject Kudos Views

Re: Nessus Scan - results in MX crash

Security / SD-WAN
2 202

Nessus Scan - results in MX crash

Security / SD-WAN
2 645

Meraki Dashboard Status / Availability Page

Dashboard & Administration
1 483
View All
custom.footer.
  • Community Guidelines
  • Cisco Privacy
  • Khoros Privacy
  • Privacy Settings
  • Terms of Use
© 2022 Meraki