You can use MaxMind to determine location: https://www.maxmind.com/en/geoip-demo   This is what Meraki uses, I did get confirmation that it will be corrected to USA on their next update cycle next Tuesday ... View more

So in talking with Meraki support it seems that subnet 17.250.96.0/22 is being associated to Taiwan for Apple and doing a correction with Maxmind to correct since they use them for geolocation. Weird thing they are still checking on is that whitelist is also being affected by Geolocation layer 7 rules. ... View more

Case is open, they have no idea right now and  wanted to see if anyone else was having the same issue. ... View more

Various MX's (MX68, MX75, MX95)...no layer 7 firewall rule.  I had read something about making sure icloud wasn't blocked but issue is happening at several locations where networks are both flat layer 2 and layer 3 networks.  It is just iMessage send/receive video and pictures.  Setup local is MX95 connected to MS125 and MR46 AP with client whitelisted. ... View more

Do you know what driver version you went with so we can do some testing? thank you ... View more

Has there been any update?  We are still seeing issues and just put a new bldg up and of course half the clients are not working properly.  Another weird issue we are experiencing with layer3 is that these devices are also getting apipa addresses and dhcp (going through switch) is not assigning proper ip's some oft the time. ... View more

We are going to try and problematic clients to 802.11n in settings of their devices for now. ... View more

I checked some other sites running 28.6 and seeing excess frame loss for some clients that are disassociating.  I did a little more digging and it seems to mostly affect 802.11ax and 802.11ac clients and havent seen it affecting 802.11n clients ... View more

We are also seeing issues with this on MR44, MR46 in various deployments and running 29.4.1 ... View more

I 100% percent agree with us, how can a company such a Cisco be reliant on an outside third-party to provide security updates to their infrastructure and how it allows outside traffic to pass through their hardware to companies that pay for a “Cisco” service. What were to happen if this third-party was attacked and they changed the routing tables such as a ransomware or C2 site to somewhere inside the United States that was not being blocked. ... View more

Can you let us know who your geolocation vendor is and see if they have a lookup tool? ... View more

I think based on the size log it would create there is no way for meraki to have something in the portal. ... View more

I am just curious how it only affects a small subset of customers as well?  Every single one of my clients (100's of sites, tens of thousands of users) were affected if Hong Kong was being blocked.  I would assume every single end user that had Hong Kong blocked would be affected by this and hopefully this issue will now expedite anything could help notify us.  It would almost be impossible for a geolocation log to be created for the vast size it would be for every single site.   Thank you ... View more