cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
  • About floridanativ

How to identify a device causing a PCI scan failure

by in Security / SD-WAN
‎10-28-2020 10:39 AM
‎10-28-2020 10:39 AM
We are failing an external vulnerability scan because of a Linux Kernel 2.6 CPE vulnerability.  The scan is reporting the issues over ports 22 and 30005.   The scan results do not have mac address or IP for the device because it is an external scan.  How can I figure out which device is causing the issue? ... View more

Re: Configuring client Alerts when network is bound to a template

by in Security / SD-WAN
‎04-29-2020 01:36 PM
‎04-29-2020 01:36 PM
@PhilipDAth when I noticed it wasn't available at the template I had the same thought, figuring that I would just add that alert at the local network.  Even though the IP address of the devices I want to monitor are static and the same accross all networks I thought that it would be added at the single site.  Alerts aren't even avilable on the sites bound to the template.  I guess I'll make a wish and fingure something else out.  ... View more

Configuring client Alerts when network is bound to a template

by in Security / SD-WAN
‎04-29-2020 01:25 PM
‎04-29-2020 01:25 PM
I have 25 networks bound to a template and a couple that are not.  In the networks that are not bound to a temple I can configure alerts for clients to be notified if they connect or disconnect from the LAN and add the specific clients I want to track.  I don't see this alert configuration option for my template, nor do I see alerts availble to be configured at the location networks that are bound to the template.  Is there some other way to set up client alerts when using a template?     ... View more

Block network devices when running on backup internet

by in Security / SD-WAN
‎04-15-2020 01:19 PM
‎04-15-2020 01:19 PM
When we are failed over to backup internet, how can I create a policy to block our streaming music service and security camera service, until we roll back to primary internet?   Both devices responsible for these services are on our LAN.  ... View more

Re: PCI VA Scan results and port traffic

by in Security / SD-WAN
‎01-07-2020 02:00 PM
‎01-07-2020 02:00 PM
@PhilipDAth yes scan from the outside, no NAT to server on the inside, in fact no servers on this network. ... View more

Re: PCI VA Scan results and port traffic

by in Security / SD-WAN
‎01-07-2020 01:59 PM
‎01-07-2020 01:59 PM
no web servers or failing web services ... View more

PCI VA Scan results and port traffic

by in Security / SD-WAN
‎01-07-2020 08:54 AM
‎01-07-2020 08:54 AM
We recently had all 28 of our network scanned for vulnerabilities as part of our annual PCI audit.  We have the same model MX and the same firewall rules in place on all 28 networks.  The findings were interesting.  Almost exactly half of the networks failed the scan due to vulnerabilities for TCP traffic on port 80.                   If my firewall rules are all the same, and the devices on the network are 95% the same, why would half of the networks fail the scans and the other half pass?   Why doesn't IDS or IPS see the port scanning and block it?   I'm sure there are a million variables that could cause the pass/fail variances between theoretically identical network configs, despite that any ideas would be helpful.     ... View more

Re: How are your Network Resolutions going?

by in Off the Stack
‎02-11-2019 11:49 AM
2 Kudos
‎02-11-2019 11:49 AM
2 Kudos
I have 12 of my 27 sites ready for the template.   ... View more

Re: Happy New Year! What are your Network Resolutions?

by in Community Announcements
‎01-08-2019 01:15 PM
3 Kudos
‎01-08-2019 01:15 PM
3 Kudos
  My goal is to begin using the templating feature.  My plan is to complete building the template and then travel to all of my branches, make the physical changes to the firewalls, deploy the template and then sit back and enjoy how easy it will be to make network and security policy changes to all of my locations.  ... View more

Whitelist with wildcard

by in Security / SD-WAN
‎12-17-2018 11:42 AM
‎12-17-2018 11:42 AM
I need to whitelist the following for all clients on a specific VLAN.     Whitelist TCP connections for port 443 to sqs.us-*.amazonaws.com    I get this error message when attempting to use the wildcard for AWS in the destination field. I can get it to save if I enter specific AWS DNS servers.  Why won't meraki take the * wildcard?   ... View more
© 2023 Meraki