The Meraki Community
Register or Sign in
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
  • About Johann
Johann

Johann

Getting noticed

Member since May 29, 2019

‎05-05-2023
Kudos from
User Count
Oscalvarez
Oscalvarez
1
Jwiley78
Jwiley78
1
PhilipDAth
Kind of a big deal PhilipDAth
1
Nash
Nash
1
Roska
Roska
1
View All
Kudos given to
User Count
ww
Kind of a big deal ww
1
DarrenOC
DarrenOC
1
Julian
Julian
1
MeredithW
Community Manager MeredithW
1
View All

Community Record

23
Posts
9
Kudos
0
Solutions

Badges

ECMS1
ECMS2
CMNA
Meraki FIT Level One
Meraki FIT Level Two
5th Birthday View All
Latest Contributions by Johann
  • Topics Johann has Participated In
  • Latest Contributions by Johann

Re: VPN using Windows VPN Gateway Server

by Johann in Security / SD-WAN
‎12-28-2020 12:34 PM
‎12-28-2020 12:34 PM
Hi UCcert, I think @ww has pointed me in the right direction, as youalso mentioned I will also run the packet capture to see what is happening, thx. ... View more

Re: VPN using Windows VPN Gateway Server

by Johann in Security / SD-WAN
‎12-28-2020 12:31 PM
‎12-28-2020 12:31 PM
Hi ww, when I checked the Sonicwall rules, I never came across any implicit port forward rules, so I never created them on the Meraki. Logging back into the VPN server, I can see there are ports open for 1723 (PPTP) and 500/4500 (L2TP/IKEv). I think I will add these and then run a packet capture to see the results. Thanks for the heads up. ... View more

VPN using Windows VPN Gateway Server

by Johann in Security / SD-WAN
‎12-28-2020 07:14 AM
‎12-28-2020 07:14 AM
Hi all,   I hope someone can help, not sure if I'm missing the obvious here. So my client has a small network with a few VM's (AD,FS) hosted in Hyper-V environment. They currently have a SonicWall Firewall and I was looking to replace with a Meraki MX64. Crucially the off-site users +-50, connect to the office via a Windows VPN Server, they use the built-in Windows VPN client with an installed certificate to authenticate via AD.    I setup the Meraki Firewall exactly as the Sonicwall, everything worked perfectly except for the VPN. Users get the generic message "connection failed because host failed to respond" Am I missing something in getting this to work? As aside, I did setup one user on the Meraki with Client VPN connection and it worked, but I would like to keep the Windows VPN server if possible.   Any help would be appreciated. ... View more

Re: Dashboard Issues?

by Johann in Dashboard & Administration
‎08-27-2020 07:50 AM
‎08-27-2020 07:50 AM
Our dashboard has just come back online for web & mobile (Ireland) ... View more

Re: Dashboard Issues?

by Johann in Dashboard & Administration
‎08-27-2020 07:37 AM
‎08-27-2020 07:37 AM
Yip down for us too (Ireland) ... View more

Layer 3 Firewall Deny/All rule

by Johann in Security / SD-WAN
‎08-25-2020 01:57 AM
‎08-25-2020 01:57 AM
Hi all,   Does anyone have a definitive answer on why the Meraki Firewall rules does not end in a Deny All Rule, as is considered to be best practice when setting up firewall rules in general? As I understand it, currently if none of your firewall rules match incoming traffic, the Allow All rule will allow all traffic in. Any insight will be appreciated.   Thanks. ... View more

Re: Reaching un-defined subnets with MX AutoVPN

by Johann in Security / SD-WAN
‎07-24-2020 07:58 AM
‎07-24-2020 07:58 AM
That did it, thanks for the help! ... View more

Re: Reaching un-defined subnets with MX AutoVPN

by Johann in Security / SD-WAN
‎07-24-2020 02:29 AM
‎07-24-2020 02:29 AM
Hi there,   HQ is behind ASA and Core Switch and in Passthrough mode, is this incorrect? Should I change it? Yes the Core Switch knows the routing to the subnets   Thx ... View more

Reaching un-defined subnets with MX AutoVPN

by Johann in Security / SD-WAN
‎07-23-2020 01:22 PM
‎07-23-2020 01:22 PM
Hi all, hope somebody can help me out or point me in the right direction with this one. This is my setup:   HQ - MX behind an ASA  Branch - MX with AutoVPN to HQ with DSL connection   HQ is on a 10.32.0.x subnet with a static IP in that range, gateway is set to the core switch IP Branch is on a 10.32.18.x subnet with a route on the ASA to allow reaching the network beyond the HQ MX   Everything works as expected with the VPN,from the branch we can reach any 10.32.x .x subnet as well as subnets in the range 172.30.x.x. coming from the ASA   Now it becomes murky, currently because we have the Default route ticked in Site-to-Site VPN, all our traffic goes over the VPN, we need to change this behaviour to ensure only advertised subnets go over the VPN and all internet traffic breaks out locally. I know that by unticking the Default Route, I will get local internet breakout for non-vpn traffic, but this means that I can only reach the 10.32.x.x subnets and crucially not the 172.32.x.x subnets.    I tried adding another VLAN in the 172 subnet but it didn't work because the MX doesn't know how to route this vlan, I also tried adding a static route but this also failed. So now I'm stumped. It might well be that my inputs in vlans/static were wrong, any help would be greatly appreciated. Feel free to ask for more details.   ... View more

Re: Local breakout from autovpn

by Johann in Security / SD-WAN
‎07-09-2020 05:13 AM
‎07-09-2020 05:13 AM
what version firmware does the device need to be on to see this change? ... View more

Re: VPN using 4 G USB as primary WAN

by Johann in Security / SD-WAN
‎02-13-2020 02:41 PM
‎02-13-2020 02:41 PM
Hi, Yes I have done this a few time before and it works well, but as previous poster confirmed you need to connect on WAN first then once 4G is established you pull the cable and every subsequent reboot will fail-over to 4G no problem. As for Azure, that I can't confirm. ... View more

Re: Site-to-Site VPN working on wireless connection but not on LAN

by Johann in Security / SD-WAN
‎02-12-2020 04:55 AM
3 Kudos
‎02-12-2020 04:55 AM
3 Kudos
Hi all,   So I think I found the problem, I looked in the Per-port VLAN Settings and LAN ports were disabled by default! Haven't seen this before, not sure why it would be disabled, anyway I've enabled them now and will head out to the branch to test.   Thx   ... View more

Re: Site-to-Site VPN working on wireless connection but not on LAN

by Johann in Security / SD-WAN
‎02-12-2020 04:08 AM
‎02-12-2020 04:08 AM
Hi, the VPN was set to On   ... View more

Re: Site-to-Site VPN working on wireless connection but not on LAN

by Johann in Security / SD-WAN
‎02-12-2020 02:49 AM
‎02-12-2020 02:49 AM
Are they set up as an SD-WAN hub and a spoke or two hubs? - Yes, MX68 is the Hub and MX68CW a Spoke Do you get an IP address from the same subnet with wired or wireless? On wireless yes, on the subnet I set, on wired no Do you have any ACLs configured? No ACL's configured Is the SSID bridged to the LAN or another option? No, not that I'm aware of ... View more

Site-to-Site VPN working on wireless connection but not on LAN

by Johann in Security / SD-WAN
‎02-12-2020 12:52 AM
‎02-12-2020 12:52 AM
Greetings all,   Hope somebody can help on this one. I have a MX68 at the headend connected into my core switch and a MX68CW at a branch site on 4G.   From the branch site I can connect via WiFi to the MX68CW, then I can use the 4G connection and I'm then able to ping my MX68 and have access to all network resources located after that (I had to add my dns servers onto the wireless nic to get this working) But as soon as I connect to my MX68CW with a LAN cable, I cannot access my network at all, all pings fail, I've tried changing the dns settings for the nic, as I did for WiFi, did not help, all other settings are the same.   I am really stumped on this one, if anybody can shed some more light on this or if you need any other info on the setup, let me know.   Thx ... View more

Re: LTE as Primary WAN uplink

by Johann in Security / SD-WAN
‎08-23-2019 03:03 AM
3 Kudos
‎08-23-2019 03:03 AM
3 Kudos
Hi Julian,   There where two things which support helped me with, I had to make sure my custom APN was correct and then I had to ensure that the new config had sync'ed before I pulled the lan cable, after that it worked on LTE after a reboot. ... View more

Re: LTE as Primary WAN uplink

by Johann in Security / SD-WAN
‎08-23-2019 03:01 AM
‎08-23-2019 03:01 AM
Thx Raj, I did contact support and they are looking into it. ... View more

Re: LTE as Primary WAN uplink

by Johann in Security / SD-WAN
‎08-23-2019 03:00 AM
‎08-23-2019 03:00 AM
No, it doesn't come up again ... View more

Re: LTE as Primary WAN uplink

by Johann in Security / SD-WAN
‎08-23-2019 03:00 AM
‎08-23-2019 03:00 AM
Thx, I'll look at that ... View more

LTE as Primary WAN uplink

by Johann in Security / SD-WAN
‎08-21-2019 03:26 PM
‎08-21-2019 03:26 PM
Hi, I have setup a MX68W in my HQ and want to deploy a MX68CW with LTE as the primary WAN uplink on a remote site using AutoVPN. When testing at HQ the LTE as primary works fine as does the AutoVPN, until I reboot the device, then the device doesn't connect again to the cloud, until I connect a LAN cable, after the Meraki connects I can disconnect the LAN cable and work on LTE again. Is this by design? My remote site does not have access to a LAN, hence the need for LTE only. Any help/advice appertained. ... View more

Re: Welcome! Please introduce yourself.

by Johann in Community Tips & Tricks
‎05-31-2019 03:46 PM
3 Kudos
‎05-31-2019 03:46 PM
3 Kudos
Hi all,   A bit about yourself & your work I work for a Cisco Partner Paradyn in Ireland   Your experience with Cisco Meraki I'm just starting out learning Cisco Meraki   A fun fact about yourself I am originally from South Africa ... View more
Kudos from
User Count
Oscalvarez
Oscalvarez
1
Jwiley78
Jwiley78
1
PhilipDAth
Kind of a big deal PhilipDAth
1
Nash
Nash
1
Roska
Roska
1
View All
Kudos given to
User Count
ww
Kind of a big deal ww
1
DarrenOC
DarrenOC
1
Julian
Julian
1
MeredithW
Community Manager MeredithW
1
View All
My Top Kudoed Posts
Subject Kudos Views

Re: Site-to-Site VPN working on wireless connection but not on LAN

Security / SD-WAN
3 1917

Re: LTE as Primary WAN uplink

Security / SD-WAN
3 4242

Re: Welcome! Please introduce yourself.

Community Tips & Tricks
3 57617
View All
Powered by Khoros
custom.footer.
  • Community Guidelines
  • Cisco Privacy
  • Khoros Privacy
  • Cookies
  • Terms of Use
© 2023 Meraki