The Meraki Community
Register or Sign in
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
  • About rhbirkelund
rhbirkelund

rhbirkelund

Kind of a big deal

Member since Nov 29, 2017

yesterday

Denmark

https://blog.rhbirkelund.dk/

Groups
  • Cloud Monitoring for Catalyst - Early Availability Group

    Cloud Monitoring for Catalyst - Early Availability Group

    59
  • API Early Access Group

    API Early Access Group

    598
  • CLUS 2023 Meraki Lounge

    CLUS 2023 Meraki Lounge

    114
  • Meraki Network Lounge

    Meraki Network Lounge

    50
View All
Kudos from
User Count
DarrenOC
DarrenOC
24
Paccers
Paccers
1
abko
abko
1
eye
eye
1
MyHomeNWLab
MyHomeNWLab
7
View All
Kudos given to
User Count
PhilipDAth
Kind of a big deal PhilipDAth
19
BlakeRichardson
Kind of a big deal BlakeRichardson
1
DarrenOC
DarrenOC
5
Brash
Kind of a big deal Brash
2
RomanMD
RomanMD
1
View All

Community Record

621
Posts
606
Kudos
32
Solutions

Badges

CMSS
ECMS2
CMNA
CMNO
MOTM - Feb 2023
1st Birthday View All
Latest Contributions by rhbirkelund
  • Topics rhbirkelund has Participated In
  • Latest Contributions by rhbirkelund
  • « Previous
    • 1
    • 2
    • 3
    • …
    • 24
  • Next »

Re: Syslog nightmare

by rhbirkelund in Security / SD-WAN
2 weeks ago
2 weeks ago
I think you should call your local SE(/TSE), raise the issue, and have them work with their internal team on this. ... View more

Re: Meraki Setting for Sonos Surround

by rhbirkelund in Full-Stack & Network-Wide
a month ago
a month ago
There are a couple of things here that are making me think that you might want to get in touch with someone with more knowledge in networking, to help you out on a 1:1 basis. ... View more

Re: Meraki Setting for Sonos Surround

by rhbirkelund in Full-Stack & Network-Wide
a month ago
a month ago
Go to Switching -> Configure -> Routing & DHCP Click on the blue "Add" button, to add a new interface on your switch.   Select your switch, and give the Interface a name. Any name will do. If you're not doing anything with VLANs I'll assume you're still using VLAN 1. Enter that in the VLAN field. Enter an available IP address in your network, which isn't currently in use. Make sure it's not handed out by your DHCP server (reserved). In the multicast Routing, select "Enabe IGMP Snooping Querier". Hit Save.   Wait a few moments for the config to download to the Switch, and try again.     ... View more

Re: Meraki Setting for Sonos Surround

by rhbirkelund in Full-Stack & Network-Wide
a month ago
a month ago
On your Meraki Switch, that's closest to your MX (one which might be considered a "Core Switch") try and enable IGMP Querier,  on the VLAN where your Sonos resides. Note that the interface IP here, is different from the Meraki Management IP! So use an address that is available.     You might also want to ensure that IGMP Snooping is Enabled on your switch, by browsing to Switching -> Configure -> Switch Settings. ... View more

Re: Extending a network (wireless bridge - vlans)

by rhbirkelund in Wireless LAN
‎08-19-2023 01:37 PM
‎08-19-2023 01:37 PM
Any Meraki AP can do this. However, if you're more into staying within your current vendor, you'd might want to look into Ubiquity's Service Provider line such as LTU or AirMax, or simply just their Building Bridge. For more questions on Ubiquity, you'd might want to consult their own Discussion Forum, though. ... View more

Re: My Co-terminal License will get expired coming Aug 31. Kindly give di...

by rhbirkelund in New to Meraki
‎08-11-2023 02:21 AM
1 Kudo
‎08-11-2023 02:21 AM
1 Kudo
Meraki Firewall in front of SDWAN - When the firewall licenses reach the end of their grace period, all client traffic past the firewall will be blocked. Users will not have internet access, and Will Be Blocked from communicating with other TPI locations, AWS and Oracle via SDWAN. No. Assuming it is a Meraki MX handling SDWAN VPN connections, all traffic will be dropped. No access to Internet, no access to remote sites.   Meraki Firewall behind SDWAN - When the firewall licenses reach the end of their grace period, all client traffic past the firewall will be blocked. Users will not have internet access, and Will Not Be Blocked from communicating with other TPI locations, AWS and Oracle via SDWAN. No. Assuming it is Meraki MX as One-Armed Concentrator handling SDWAN, and you have Meraki Switches, all traffic will be dropped. No access to internet, no access to remote sites. If you do not have Meraki switches, and the MX is in One-Armed with SDWAN, all traffic destined for Remote sites via the MX will be dropped. If you do full tunnel via MX, Internet access is also blocked. If you have Local Internet Breakout, internet access is not blocked.   There is no black and white in networking; there are many different nuances... ... View more

Re: My Co-terminal License will get expired coming Aug 31. Kindly give di...

by rhbirkelund in New to Meraki
‎08-11-2023 01:56 AM
1 Kudo
‎08-11-2023 01:56 AM
1 Kudo
When your CoTerm license expire, your Meraki Organizations (and indirectly all your Meraki networks) will enter a 30-day Grace period. When that 30 day Grace Period expires, and you have not yet renewed your licenses, all Meraki networking will stop working. AP's will shut down, Switches wil no longer switch frames, and your Meraki MX will no longer route packets. Basically, your entire Meraki network will stop working. If your topology allows that the Meraki portion will be bypassed, whatever that it, it will still work. But as soon as traffic hit a Meraki device, packets are dropped.   @krishnatpi wrote: .. For the RI, IA, AZ, Santa Teresa, India, Denmark and Germany locations, how many are designed with the firewall in front of the SDWAN devices? Could you please elaborate on what you mean by this question? ... View more

Re: CW9164I-MR does seem to have a low power mode?

by rhbirkelund in Wireless LAN
‎07-12-2023 05:32 AM
1 Kudo
‎07-12-2023 05:32 AM
1 Kudo
It makes sense what you are saying, that insufficient power might result in some inconsistent operation.   But in this case there are two sets of documentation which seem to be claiming different things for the same piece of hardware. One set claims it can boot on .3af. Another says it needs .3at. ... View more

Re: how to lookup the appliance chassis code thru the serial api from cisco...

by rhbirkelund in Developers & APIs
‎07-12-2023 05:16 AM
‎07-12-2023 05:16 AM
You need to be more detailed in your question. Was is it that you are asking for? If not the Model number, then what chassis code? ... View more

Re: Accept administrator privileges --- newer seems to work right

by rhbirkelund in Dashboard & Administration
‎07-12-2023 05:13 AM
1 Kudo
‎07-12-2023 05:13 AM
1 Kudo
When ever I gte new admin rights, I have to go through each and every Org I have access to, and accept the new Admin rights for the new Org.   However, if I click on the link in the email that is sent, that usually seems to be enough.   But I'm still supprised that the other method seems to be so buggy, yes.   It's been like this since forever, if I remember correctly. ... View more

Re: BGP Routing Disabled

by rhbirkelund in Security / SD-WAN
‎07-05-2023 11:38 PM
‎07-05-2023 11:38 PM
MX18.107.2 actually, but yeah.. Guess I'll have to ask support..   Oddly enogh I don't have any IPv6 prefixes configured. Also the IPv6 settings in the uplink is set to Auto(Stateless), with the MX not getting anything assigned. To my knowledge, there's noting upstream that does IPv6. ... View more

BGP Routing Disabled

by rhbirkelund in Security / SD-WAN
‎07-05-2023 05:45 AM
‎07-05-2023 05:45 AM
I've looking into this for a while now, and seen it a few places.. Eventhough BGP routing is disabled, any idea on why my Hub MX in concentrator mode, keeps insisting on negotiating BGP, even though it is disabled on the Routing page?   ... View more

Re: non-meraki vpn peer subnets overlap with meraki hub auto vpn

by rhbirkelund in Security / SD-WAN
‎06-08-2023 11:15 PM
1 Kudo
‎06-08-2023 11:15 PM
1 Kudo
While it's true that you cannot restrict which sites should join AutoVPN cloud with tags, you still have the possibilty to configure which subnets should be Enabled for VPN.  So eventhough you cannot configure a Site to not do AutoVPN peering, you can simply disable all the sites subnets in AutoVPN. That way, no subnets will be advertised from that site. ... View more

Re: ECMS 500-220 Certification Test

by rhbirkelund in Off the Stack
‎06-08-2023 06:33 AM
‎06-08-2023 06:33 AM
Sadly, it's my experience that this sometimes is the case, and it's intentional. When all answers seem to be wrong, you'll have to select the least wrong answer. 😕 ... View more

Re: Users not receiving MFA prompt with AnyConnect

by rhbirkelund in Security / SD-WAN
‎06-08-2023 06:30 AM
‎06-08-2023 06:30 AM
Have you added Meraki Anyconnect to the Conditional Access Policy? ... View more

Re: Join the Meraki Community Scavenger Hunt!

by rhbirkelund in CLUS 2023 Meraki Lounge Announcements
‎06-05-2023 12:17 PM
‎06-05-2023 12:17 PM
Enrolled in Intro to Cisco+ Secure Connect  ... View more

Re: New separate CS and MS release trains - no more MS390 issues in MS rele...

by rhbirkelund in Switching
‎06-01-2023 10:23 PM
‎06-01-2023 10:23 PM
And so I stand corrected. 🙂 ... View more

Re: New separate CS and MS release trains - no more MS390 issues in MS rele...

by rhbirkelund in Switching
‎06-01-2023 05:22 AM
‎06-01-2023 05:22 AM
It's just.. PVT was last week, and the week or so before, for the US. And albeit, I missed the last half of PVT (afternoon on day 2 and all of day 3), to my knowledge this was not mentioned at all. I'd expect this change being radical enough to at least get mentioned during PVT. Or perhaps it was, while I was out?   But I guess they've finally given up on getting MS390 to work on a pure MS firmware, and so resorting back to at C9300 firmware with Meraki persona. 😉 ... View more

Re: New separate CS and MS release trains - no more MS390 issues in MS rele...

by rhbirkelund in Switching
‎06-01-2023 04:07 AM
3 Kudos
‎06-01-2023 04:07 AM
3 Kudos
I find it odd that this hasn't gotten more attention. ... View more

Re: Custom Certificates on MX Anyconnect with LetsEncrypt

by rhbirkelund in Security / SD-WAN
‎05-17-2023 01:21 PM
2 Kudos
‎05-17-2023 01:21 PM
2 Kudos
With the hints given from @RomanMD I've managed to get it to work with LetsEncrypt. I used the command sudo certbot certonly --manual --preferred-challenges dns --csr MX-Anyconnect.csr -d <A record to Meraki MX> where MX-Anyconnect.csr is the Signing Request generated from Meraki Dashboard. This yields a Challenge that needs to be configured on a TXT record via your own DNS Admin Portal. After successfully verifying this DNS challenge, three files are created: 0000_cert.pem - Device Certificate 0000_chain.pem - Chain Certificate 0001_chain.pem - Full Chain with Device Certificate However, Certbot creates the certificates with the invalid Root Cert, as pointed out by @RomanMD. So after replacing the invalid Root Cert with isrgrootx1.pem, the Meraki Dashboard accepted the device and chain certificate.   Tested with Cisco Secure Connect Client, and not getting any certificate errors. 🙂   Kudos and thanks to @RomanMD with hinting towards the invalid Root Cert 🙂 ... View more

Re: MR30H on POE Passthough to Bittel

by rhbirkelund in Wireless LAN
‎05-17-2023 02:08 AM
‎05-17-2023 02:08 AM
If you plug a Laptop into the MR30H does it then obtain an IP address?   I don't know about the Bittel Repeater, but I did have a customer job once, who also used the Jacob Jensen phone. If memory serves me right, we had it cabled directly to a switch port, and had to set some DHCP options for it to work. Unfortunately I don't remember the DHCP options. ... View more

Re: Custom Certificates on MX Anyconnect with LetsEncrypt

by rhbirkelund in Security / SD-WAN
‎05-17-2023 12:43 AM
‎05-17-2023 12:43 AM
This is aweseome info!   I has just looking at the root certificates that LetsEncrypt has on their webpage - the same page you refer to later in the post with the Non-Working Root Cert.   The Root Cert you have posted, is the one they refer to as the Self-Signed ISRG Root X1.   I'm going to test this later. 😄 ... View more

Re: SSID Tunneling Radius Interface

by rhbirkelund in Wireless LAN
‎05-16-2023 11:08 PM
‎05-16-2023 11:08 PM
Nope. Supports recommendation is to move the MX to Passthrough Mode, instead of routed. ... View more

Re: SSID Tunneling Radius Interface

by rhbirkelund in Wireless LAN
‎05-16-2023 10:47 PM
‎05-16-2023 10:47 PM
When the SSID is in tunnel mode - either Layer 3 roaming or VPN, RADIUS is sourced from the MX vlan IP and forwarded out the WAN interface, regardless if you have more specific entries in the routing table.  ... View more

Re: When is MR70-HW EOS and EOL?

by rhbirkelund in Off the Stack
‎05-16-2023 07:02 AM
‎05-16-2023 07:02 AM
Nothing has been announced yet, so so far good to go. https://documentation.meraki.com/General_Administration/Other_Topics/Meraki_End-of-Life_(EOL)_Products_and_Dates ... View more
  • « Previous
    • 1
    • 2
    • 3
    • …
    • 24
  • Next »
Kudos from
User Count
DarrenOC
DarrenOC
24
Paccers
Paccers
1
abko
abko
1
eye
eye
1
MyHomeNWLab
MyHomeNWLab
7
View All
Kudos given to
User Count
PhilipDAth
Kind of a big deal PhilipDAth
19
BlakeRichardson
Kind of a big deal BlakeRichardson
1
DarrenOC
DarrenOC
5
Brash
Kind of a big deal Brash
2
RomanMD
RomanMD
1
View All
My Accepted Solutions
Subject Views Posted

Re: Meraki Mac filtering / PSK+ Mac Filtering

Wireless LAN
335 ‎05-10-2023 12:20 AM

Re: Trying to Unclaim vMX - "vMX nodes are retained for future use"

Cloud Security / SD-WAN
1417 ‎05-02-2023 10:59 PM

Re: Max Throughput in MX68w

Security / SD-WAN
455 ‎04-04-2023 10:06 AM

Re: Using the API to update the MX L3 Firewall using Network Policy Objects

Developers & APIs
442 ‎03-23-2023 12:12 AM

Re: Combined Network Option

Wireless LAN
282 ‎02-27-2023 10:55 PM

Re: Underlay Routing

Security / SD-WAN
828 ‎02-26-2023 10:06 AM

Re: On the Meraki API Dashboard API in Cisco Devnet, how can I configure m...

Developers & APIs
461 ‎02-24-2023 12:27 PM

Re: MX-250

Dashboard & Administration
525 ‎02-23-2023 01:25 PM

Re: Meraki Upgrades

Switching
532 ‎02-22-2023 10:28 AM

Re: Getting Device Details Using Dashboard API

Developers & APIs
524 ‎02-20-2023 03:34 AM
View All
My Top Kudoed Posts
Subject Kudos Views

NBAR ID Lookup

Security / SD-WAN
15 5179

Meraki Supported Antenna Chart

Wireless LAN
14 2979

New MX finally announced

Security / SD-WAN
12 5243

Re: Announcing the Meraki Learning Hub!

Community Announcements
12 41533

Re: RSTP root on remote Meraki MS series switches

Switching
9 700
View All
Powered by Khoros
custom.footer.
  • Community Guidelines
  • Cisco Privacy
  • Khoros Privacy
  • Cookies
  • Terms of Use
© 2023 Meraki