About rbnielsen

rbnielsen

Perhaps then the unmanaged switch can dynamically discover 802.1q packets? Not that I have ever heard of such a switch. What's the make and model of it?

rbnielsen

There's a good chance that the unmanaged switch doesn't understand 802.1q trunking. That being said, if you on the managed switch have a port where vlan 1 is native (untagged) and tagging vlan 4, connect the unmanaged switch to said port, all traffic will ingress on the untagged vlan 1 on the managed switch, because the unmanaged switch has no concept of vlans. Now if the managed switch port is in Access mode on vlan 4, and the unmanaged switch is connected to this port, all traffic on the unmanaged switch will ingress on vlan 4 of the managed. I hope that made sense. The negative effects of an unmanaged switch is that you really have no chance to configure features on it, debug network issues etc. Chances are also that it doesn't support any safeguard measures, so you stand the risk of bringing the entire network down, or if someone with little networking knowledge connects a cable to two ports on the same unmanaged switch (introducing a network loop). Also QoS can not be done on a unmanaged switch, so traffic can not be priorotized on the unmanaged switch. Only on the managed switch.

rbnielsen

Just putting it out there, the Chinese government doesn’t look to lightly at providing internet access via a VPN out of China. So the best solution is to keep doing what you’re doing.

rbnielsen

Have a look at https://meraki.cisco.com/public/mv-site-survey/index.html Perhaps, it could help you estimate the amount of MVs needed.

rbnielsen

I'm not sure if this is available for public, but for reference; https://community.meraki.com/t5/Developer-Early-Access/api-mp-meraki-com-is-now-deprecated-please-use-api-meraki-com/ba-p/116260

rbnielsen

The mega proxy is being deprecated, so you should use api.meraki.com instead.

rbnielsen

If the APs are connected to access ports and in vlan 1, configure the new SSID to Bridge Mode and disable VLAN tagging on the Music SSID.

rbnielsen

Hah! I’d expect the antennas be better packaged. It is Cisco afterwards. 😆

rbnielsen

Have ensured the AP is configured in survey mode? See here for instructions; https://documentation.meraki.com/MR/WiFi_Basics_and_Best_Practices/Conducting_Site_Surveys_with_MR_Access_Points

rbnielsen

What’s in the “doggy bags”?

rbnielsen

If you click on the Order no in Active Trial, that should bring you to the trial. From there you should be able to end the trial.

rbnielsen

The MS390 really does feel like buying the cat in the bag.

rbnielsen

I think that is a certain Cisco service/subscription. I think it's called Smart Net, but don't hold me to it.

rbnielsen

@KRobert wrote: Their RMA turnaround time is pretty quick as well. Sometimes less than 24hours. https://meraki.cisco.com/support/ Just bear in mind, that according to terms, there may be up to 5 business days, from receiving the defective unit..

rbnielsen · ‎04-11-2021

@BrandonS, I have honestly been wondering the same, if it was related to WPA3.

rbnielsen · ‎04-08-2021

I'm still curious as to if anyone else has noticed the same.

rbnielsen · ‎04-04-2021

An easy way to verify, is to check which one has light in the fiber. Now since that it's Lasers, you'll probably risk damaging your eyesight. Instead use the camera on your smartphone, in case you have such.

rbnielsen · ‎04-04-2021

Over a very long period of time, I've been noticing some different performance regarding iOS devices (me and wifeys iPhones) and my Meraki stack at home. I often notice that after the iPhone has been "at sleep" for some time, and then open, it doesn't really reconnect. It is still associated to the SSID, as per the icon at the top, but I can't get any traffic through, and fails pings using Fing. Not until I disable WiFi and enable it again, traffic again flows over WiFi. The implication of this is that the iPhone looses connectivity to different streaming devices (my glorious Chromecast Audio). Now I realize that iPhone, will disable it's NIC to conserve energy (Power Save Mode). As soon as this occurred, I grabbed my Mac and took a packettrace on the channel with Airtool (v1.9.1). Here comes the interesting part; in the trace I can see the air being flooded with Null Frames, which I can see stems from my iPhone. It's was as if it's informing my AP - continously - that it is going to sleep, and not getting a reply. 1 send, 6 retries; Send and two first retries at 6 Mbps rate, and the rest at 12 Mbps TX rate. I'm wondering if anyone else has noticed this? I can't really decide if this is a bug or a feature, Apple or Meraki related. Any feedback would be appreciated. I've uploaded the .pcap here. At the time of the packetdump, my Macbook and iPhone, was placed right next to eachother. So the packets received in the trace, should (sort of) reflect the same with regards to the iPhone. Details; iPhone MAC: f0:98:9d:c4:c2:2b / Apple_c4:c2:2b Meraki AP: 32:56:ee:a0:51:a0 SSID: Winona Router Security: WPA3-SAE Transition (WPA2+WPA3) RRM: 5GHz only, Minimum bitrate 12 Mbps At around packet 600 is where (I think), I disable and re-enable my iPhone NIC.

rbnielsen · ‎03-30-2021

Regarding the SKU types, the vMX-M does not choose the IP SKU for you. You have to choose it yourself. There’s four different types, and the exact difference in performance I have no idea. But you need to choose the right one, because depending on what you choose you’ll not able to utilise ClientVPN due to some firewall rules that are being applied the IP SKU.

rbnielsen · ‎03-22-2021

After bringing up the stack, how long did you wait? How did you verify the Cloud Connectivity? Did you check the colors of the LEDs on the switch? Sometimes, my experience is that the switch will report Unable to Connect in the dashboard, eventhough it is in fact conencted. Usually it's due to some caching going on, either directly in your local browser, or at the Meraki End.

rbnielsen · ‎03-16-2021

Now since this is my first time doing Cisco Live, and we're not allowed be there physically, how does one get their hands on the awesome Meraki Cisco Live swag, that I've heard so much about? 😄 It's not like I can go up and shake @RafaelM's hand, and grab some swag while I'm there.. 😉

rbnielsen · ‎02-04-2021

From what I see, it should be possible by creating a Device Profile, and pushing it to the device. But I would probably try reaching out to Meraki Support, rather then Cisco TAC.

rbnielsen · ‎01-24-2021

I honestly can't remember what the option 242 was for. It was about 3-4 years since I installed it. But I think it's Avaya IP Office.

rbnielsen · ‎01-24-2021

Are the switchports connecting the the IP phones and PCs configured ála this? Also, you'll need to set DHCP relay on the interface on the switch. Make sure the interface IP address isn't in use some where else. I see in your screenshot that you use .1 addres for the interface. You'll also need to ensure you have connectivity to the server. This means that VLAN218 is allowed on trunk links further upstream. Also, regarding DHCP options, make sure it is someting along the lines of; That is, Type is text. In principle, you should be able to put a Laptop on VLAN 218, and if you get an IP address you should be able to Ping the PBX, assuming there isn't any ACLs in place. If you are not getting an address, but you get one by creating an identical VLAN 219, you'll need to examine the path of communicaitons. Maybe 218 isn't allowed on the trunk? Edit: Perhaps you could try to connect a PC to a normal access port in vlan 218, and perform er packet dump from wireshark, to determine if you get the correct DHCP options?

rbnielsen · ‎01-24-2021

I can't comment for MRs because, well, I haven't tried that scenario yet. But imagine Z1 teleworkers. The Z1 is not supported on MX15.x but you can schedule an upgrade to MX15.x. What will happen is that the Z1 will "upgrade" to MX15, but since there is not support for it, the Z1 will stay on the latest MX14.x software that supports it, but still report as upgraded to MX15.x. I imagine that the same applies to MRs.

rbnielsen

Community Record

Badges