Meraki

CptnCrnch · ‎Feb 4 2025

Same here. MX85 running perfectly fine.

CptnCrnch · ‎Jan 3 2025

There are solutions like "UDP-Multiplexers". I've been using them e.g. with customers implementing Secure Network Analytics. Simply switch over to their Flow Replicator that forwards Netflow to different destinations. Something like https://github.com/thomseddon/udp-replicator would even be a very sleek solution - and Open Source too.

CptnCrnch · ‎Dec 12 2024

...and to comply with the licence conditions 😇

CptnCrnch · ‎Dec 12 2024

You're right: it's not free - but something really worth to consider when managing a fleet of ASA, FTD and Meraki devices. Not even talking about the new and even more interesting things like Multicloud Defense and Hypershield. Having harmonized objects over your whole environment and something like the mentioned above is only one of the small advantages. Having AIOps in place now, I'm really excited to present this to my customers.

CptnCrnch · ‎Dec 12 2024

Using Cisco Defense Orchestrator (CDO), nowadays called Security Cloud Control, this would be useable via CSDAC (Dynamic Attributes Connector). Makes sense when you're dealing with more than "only" Meraki MX.

CptnCrnch · ‎Dec 11 2024

Great job @MirzaDz! Wow, @cmr, congrats to that top spot! 😎 Of course, thanks to everybody else involved here!

CptnCrnch · ‎Dec 5 2024

One of the easiest options here would be: how is your "Uplink Bandwidth" set up under "SD-WAN and Traffic Shaping"?

CptnCrnch · ‎Dec 3 2024

Looking good so far!

CptnCrnch · ‎Nov 30 2024

What exactly brings up the error? Built-in VPN Client or AnyConnect (which should be Secure Client nowadays).

CptnCrnch · ‎Nov 23 2024

Nope 😎

CptnCrnch · ‎Nov 19 2024

By default, an MX will do NAT and hide everything within your internal network (and Reote Access VPN) to its offical IP address on the outside interface. So, in a nutshell - it could be working right out of the box. Don‘t know anything about your infrastructure though

CptnCrnch · ‎Nov 13 2024

I'd love to be able to mark this a the solution 😉

CptnCrnch · ‎Nov 12 2024

Congrats, especially to @AlexGregoire for making it easy to help! Stellar contributions as always by @PhilipDAth and our bunch of "Big Things" in here. Thanks a million for that!

CptnCrnch · ‎Nov 5 2024

From a technical point of view, Layer 7 as well as IPS is handled by Snort processes. Therefore, these packets will have to run through that one to be handled accordingly.

CptnCrnch · ‎Nov 4 2024

Looking good so far!

CptnCrnch · ‎Oct 10 2024

I assume that the Guest visitors don't have the Umbrella Client installed? Do they have the same issues? Just to be able to narrow this one down a little...

CptnCrnch · ‎Oct 10 2024

Changes should be simultaneously, existing sessions should not be affected as the MX is a stateful device.

CptnCrnch · ‎Oct 8 2024

Sorry, no offense intended. It‘s rather unusual within a forum to say „let‘s do a private session to resolve that issue“. In this case, OP could simply give Meraki Support a call. 😉

CptnCrnch · ‎Oct 8 2024

From my point of view, the point of this forum is users helping users over here. Or are you trying to sell your services in the background?

CptnCrnch · ‎Oct 7 2024

What a great start @Knowguy! Keep it up, you rock! Of course, big fat congrats to everybody else!

CptnCrnch · ‎Oct 3 2024

Not a Single Layer 7 rule needed. Just block Access to TCP Port 23 in your regular Policy for this specific subnet

CptnCrnch · ‎Oct 2 2024

Switched back to 31.1.4 but the CW9166 is Auto-negotiating at 100Mbps only since… 😑

CptnCrnch · ‎Oct 2 2024

Wow, that's a huge bummer!

CptnCrnch · ‎Oct 1 2024

Had to switch back to 31.1.4 due to CW9166I's frequently (every few minutes) loosing connectivity. 😐

CptnCrnch · ‎Oct 1 2024

Woohoo! Congrats @sungod and warm welcome to the club!

About CptnCrnch

CptnCrnch

Chris

Community Record

Badges