Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
About Johann
Community Record
23
Posts
9
Kudos
0
Solutions
Badges
Dec 28 2020
12:34 PM
Hi UCcert, I think @ww has pointed me in the right direction, as youalso mentioned I will also run the packet capture to see what is happening, thx.
... View more
Dec 28 2020
12:31 PM
Hi ww, when I checked the Sonicwall rules, I never came across any implicit port forward rules, so I never created them on the Meraki. Logging back into the VPN server, I can see there are ports open for 1723 (PPTP) and 500/4500 (L2TP/IKEv). I think I will add these and then run a packet capture to see the results. Thanks for the heads up.
... View more
Dec 28 2020
7:14 AM
Hi all, I hope someone can help, not sure if I'm missing the obvious here. So my client has a small network with a few VM's (AD,FS) hosted in Hyper-V environment. They currently have a SonicWall Firewall and I was looking to replace with a Meraki MX64. Crucially the off-site users +-50, connect to the office via a Windows VPN Server, they use the built-in Windows VPN client with an installed certificate to authenticate via AD. I setup the Meraki Firewall exactly as the Sonicwall, everything worked perfectly except for the VPN. Users get the generic message "connection failed because host failed to respond" Am I missing something in getting this to work? As aside, I did setup one user on the Meraki with Client VPN connection and it worked, but I would like to keep the Windows VPN server if possible. Any help would be appreciated.
... View more
Aug 27 2020
7:50 AM
Our dashboard has just come back online for web & mobile (Ireland)
... View more
Aug 25 2020
1:57 AM
Hi all, Does anyone have a definitive answer on why the Meraki Firewall rules does not end in a Deny All Rule, as is considered to be best practice when setting up firewall rules in general? As I understand it, currently if none of your firewall rules match incoming traffic, the Allow All rule will allow all traffic in. Any insight will be appreciated. Thanks.
... View more
Jul 24 2020
2:29 AM
Hi there, HQ is behind ASA and Core Switch and in Passthrough mode, is this incorrect? Should I change it? Yes the Core Switch knows the routing to the subnets Thx
... View more
Jul 23 2020
1:22 PM
Hi all, hope somebody can help me out or point me in the right direction with this one. This is my setup: HQ - MX behind an ASA Branch - MX with AutoVPN to HQ with DSL connection HQ is on a 10.32.0.x subnet with a static IP in that range, gateway is set to the core switch IP Branch is on a 10.32.18.x subnet with a route on the ASA to allow reaching the network beyond the HQ MX Everything works as expected with the VPN,from the branch we can reach any 10.32.x .x subnet as well as subnets in the range 172.30.x.x. coming from the ASA Now it becomes murky, currently because we have the Default route ticked in Site-to-Site VPN, all our traffic goes over the VPN, we need to change this behaviour to ensure only advertised subnets go over the VPN and all internet traffic breaks out locally. I know that by unticking the Default Route, I will get local internet breakout for non-vpn traffic, but this means that I can only reach the 10.32.x.x subnets and crucially not the 172.32.x.x subnets. I tried adding another VLAN in the 172 subnet but it didn't work because the MX doesn't know how to route this vlan, I also tried adding a static route but this also failed. So now I'm stumped. It might well be that my inputs in vlans/static were wrong, any help would be greatly appreciated. Feel free to ask for more details.
... View more
Jul 9 2020
5:13 AM
what version firmware does the device need to be on to see this change?
... View more
Feb 13 2020
2:41 PM
Hi, Yes I have done this a few time before and it works well, but as previous poster confirmed you need to connect on WAN first then once 4G is established you pull the cable and every subsequent reboot will fail-over to 4G no problem. As for Azure, that I can't confirm.
... View more
Feb 12 2020
4:55 AM
3 Kudos
Hi all, So I think I found the problem, I looked in the Per-port VLAN Settings and LAN ports were disabled by default! Haven't seen this before, not sure why it would be disabled, anyway I've enabled them now and will head out to the branch to test. Thx
... View more
Feb 12 2020
4:08 AM
Hi, the VPN was set to On
... View more
Feb 12 2020
2:49 AM
Are they set up as an SD-WAN hub and a spoke or two hubs? - Yes, MX68 is the Hub and MX68CW a Spoke Do you get an IP address from the same subnet with wired or wireless? On wireless yes, on the subnet I set, on wired no Do you have any ACLs configured? No ACL's configured Is the SSID bridged to the LAN or another option? No, not that I'm aware of
... View more
Feb 12 2020
12:52 AM
Greetings all, Hope somebody can help on this one. I have a MX68 at the headend connected into my core switch and a MX68CW at a branch site on 4G. From the branch site I can connect via WiFi to the MX68CW, then I can use the 4G connection and I'm then able to ping my MX68 and have access to all network resources located after that (I had to add my dns servers onto the wireless nic to get this working) But as soon as I connect to my MX68CW with a LAN cable, I cannot access my network at all, all pings fail, I've tried changing the dns settings for the nic, as I did for WiFi, did not help, all other settings are the same. I am really stumped on this one, if anybody can shed some more light on this or if you need any other info on the setup, let me know. Thx
... View more
Aug 23 2019
3:03 AM
3 Kudos
Hi Julian, There where two things which support helped me with, I had to make sure my custom APN was correct and then I had to ensure that the new config had sync'ed before I pulled the lan cable, after that it worked on LTE after a reboot.
... View more
Aug 21 2019
3:26 PM
Hi, I have setup a MX68W in my HQ and want to deploy a MX68CW with LTE as the primary WAN uplink on a remote site using AutoVPN. When testing at HQ the LTE as primary works fine as does the AutoVPN, until I reboot the device, then the device doesn't connect again to the cloud, until I connect a LAN cable, after the Meraki connects I can disconnect the LAN cable and work on LTE again. Is this by design? My remote site does not have access to a LAN, hence the need for LTE only. Any help/advice appertained.
... View more
May 31 2019
3:46 PM
3 Kudos
Hi all, A bit about yourself & your work I work for a Cisco Partner Paradyn in Ireland Your experience with Cisco Meraki I'm just starting out learning Cisco Meraki A fun fact about yourself I am originally from South Africa
... View more
My Top Kudoed Posts
© 2024 Cisco Systems, Inc.
