So how it should work according to the documentation is as follows. There are 8 queues where 6 of them are configurable.  Each queue has a minimum bandwidth scheduling guarantee that is double of the previous queue.  That means if there is no traffic from upper queues your queue can actually borrow leftover bandwidth from higher queues.   By default there already is some mapping from DSCP values to queues in the DSCP to CoS queue mapping link.  However if you don't have any rules configured all traffic will be send to queue 0.  If you have an MS 120 or 125 series you only have the possibility to match incoming VLAN values and no UDP/TCP port rules.  However if your traffic is already tagged upfront you can add a rule that trusts incoming DSCP values.   AFAIK there are no live counters you can view to see the amount of dropped packets due to buffer overflow let alone viewing it in each queue.   I'm not sure if the standard IFMIB supports a queue dropped packets counter so I guess you're out of luck there. ... View more

If you want to port-channel down towards the MS then it is mandatory to use LACP as protocol.  Static channels are not supported.   Just an extra to keep in mind 😉 ... View more

The difference is the interface it provides. A fiber SFP usually has LC fiber connectors (but can have MPO in case of some 40G+ QSFP's). A copper SFP provides a copper ethernet port. The insert remains SFP/SFP+.  I think you have some confusion about the lingo 😉 ... View more

This has been discussed in multiple topics and the problem has to do with the amount of power an SFP+ port can deliver and the fact that multigig is power hungry.   The vendors simply cannot support multigig SFP+ modules due to the amount of power they require.  It "could" potentially work with an aftermarket module however they can't support it just like you wouldn't support copper network cables over a 100 meters. ... View more

I consider the RU's to be used for the smaller payloads. I'm just referring to if your 4x4 radio does it's work and provides 2 spatially separate 2x2 clients their full speed (MU-MIMO). Wouldn't it be cool if to have a large room shielded on the outer wall and slightly reflective on the inner wall and have lab quality test scenario's?  Like an independent organization that actually measures the total throughput in various scenario's per device type, large and small files like you have the IMIX testing on SD-WAN and firewalls. ... View more

I run it on a simple HP Elitebook. However I do not do surveys for extremely large floorplans so I couldn't speak to that.   The only survey I ever did in a factory with a building of about 350 meters in length and 60 meters in width was still with the old airmagnet and was purely on-a-stick.  You can imagine the amount of steps I took 😉  (2 floors btw) ... View more

Aren't you conflating your results with a single user per band now or are you actually using real world based estimations on for example 4 beefy Wi-Fi clients on the 5 and 6 GHz band? ... View more

I appreciate competition in the survey area since that could bring prices down a bit. However I can't see what you could mean with overpowered hardware? For the predictive surveys your hardware does not matter since it's predictive 😉  And the Ekahau solution I use now runs on a normal corporate laptop.   For the actual surveys having the measurement device that is actually tested to be within 6dB error marging as opposed to over 20dB error on other NIC's is not overpowered but just necessary, not to mention it comes with a spectrum analyser built in.   Please elaborate!  (and easy with the shilling please, you make it look like you are working for Hamina .p) ... View more

QoS is well and good in enterprise environments where you can have policies on your devices to have them tag the traffic with the correct UP tag.  However if you are talking high density as in events or stadiums that comes flying out the window 😉   In the end if your airtime constantly full due to bad AP and channel design any application will suffer from that.  OP's original question is something well to consider before deploying a wireless deployment however the way of doing it by a simple calculation is a bit risky. If I was able to fully capture wifi6(e) traffic I would be able to see how much OFDMA was actually being used.  If someone has alot of Wi-Fi 6 clients that do some voice calls you could try to capture that and see if it is actually being used. ... View more

There is alot that can be written about real world throughput when deploying access point. Usually you can use predictive modelling for capacity planning inside predictive survey tools. However real world will always differ a bit from predictive but it can give a good indicator. In the end after your deployment has completed it is important to also gather data from your wireless deployment at busy times. It is very important to know a few key details. The MR46 AP does have 4x4:4 on 5 GHz and also on 2.4 GHz.  However there are no Wi-Fi 6(E) clients that support more than 2x2:2.  This means that in order to be able to use the 4x4:4 on your AP you need your clients spread out enough so the AP can use MU-MIMO to divise up it's 4x4 radio streams over 2 spatially separate 2x2:2 clients.  Also for Wi-Fi 6 clients you also have the OFDMA resource unit division for smaller frames over multiple clients. Then you also need to consider the management overhead and how the clients will actually behave. So while you theoretically can have really high MCS table values over many clients your clients will usually have alot of waiting to do before being able to transmit. Long story short:  If you have few high capacity wireless clients you will have more chance to actually max out a 1 gig connection from the AP and have the necessity to at least use 2.5 Gbps ports on your switch.  If you have a really high amount of users on the same AP (like 40 or more) you will have more waiting due to contention and less chance to actually fill up your 1 gig connection.   I personally use Ekahau site survey for my designs and if capacity planning is a part of the survey you go about it this way: You define an area and within that area you can define the amount of clients of each type and with the expected applications they will all be running concurrently. (for example: 10 idle smartphone 2x2 clients, 5 smartphone 2x2 clients using voice, 5 laptops doing mail and webtraffic and 2 laptops doing video conferencing).  With this information the survey software will calculate how much airtime those devices will take up divided over all the AP's in that area and keeping into account if you have any overlapping or co-channels. ... View more

Interesting.  I had the same issue and had to do some copy pasting around 😉 ... View more

I don't see why that wouldn't work if you of course choose a C9500 model that supports the breakout cable on the 40G ports. To the MS it would just be 4 x 10G port channel. I would however double check with your Cisco Rep about the C9500 breakout interfaces bonding. ... View more

Technically yes, the link will come up since it is basically a QSFP module.  However the software on the switches don't like changing to stacking while online. ... View more

Because you can have multiple IP interfaces on a switch you have to tell it what interface to use to reach for an http service.  So if you have a vlan interface that is meant to reach the internet you can add it as your ip http client source-interface by using the command that is in the error message. Let's say you are using vlan 20 as your management interface to reach the internet. interface vlan 20  no shutdown  ip address 10.1.0.20 255.255.255.0 ip route 0.0.0.0 0.0.0.0 10.1.0.1 ip name-server 8.8.8.8 ip http client source-interface vlan 20 Edit: this example is using a fixed address, however a dhcp pool should also be available on that subnet so when the switch fact defaults it can actually reach dashboard again. ... View more

AFAIK there is no route summarization feature yet in Meraki dashboard. So that might be a good case to present als request. ... View more

The error says the meraki dashboard did not provide a certificate for your TLS session. I guess this is a case for support!   Please let us know how that went! ... View more

I haven't but indeed if you need any information to put onto your own webpages then you will need to use API's to pull some data. I suggest you start by checking out the current version of the API here: https://developer.cisco.com/meraki/api-v1/#!create-an-action-batch .  Or get the postman collection.   Sounds like a big project to me 😉 ... View more

Yeah the redacted log is not much help 😉 You'll have to see if it has an acces-accept with certain AV-pairs or access-reject with a reason. Usually you don't match a rule in your policy. But it can be different like some failure to start the exchange. A pcap on the wired port of the AP can also be helpful.  You can filter on port 1812. ... View more

Only an MS425 can have stack ports on the front. You can change them back to regular switchports in the switch -> switchports page and just change the mode. ... View more

WPA3 is between the supplicant and the authenticator, not the authentication server. Between the AP and NPS you will only have radius exchanges.   It would help if you could get the logs but also get the wired packet captures between the AP and the NPS server so you can determine EAP type, username, called station id, etc etc.  Just to see if you're even matching the access rules.  Also see what ciphers the supplicant to use towards the NPS server for the TLS session and if the NPS server supports it. ... View more

PMF not supported would preclude a client from even associating. Since the beacons and probe responses will only have the WPA3 RSN info the client should not even attempt association in that case. ... View more

I'm not sure if you can see the live status of the uplink port of each AP via the REST API.  In that case you could have a script iterating over all your AP's and report if it sees a link that is lower than the max speed which could denote a cabling problem.   It's not so much that the AP won't perform well but if speeds are negotiated under the max speed of what the AP and switchport can do it may be a good alert to have to keep the quality of your cables. ... View more