Oddly enough my profile has COLOR BLIND ASSIST MODE OFF yet continue to still see the BLUE status colors - so the system/status (color blind assist) is broke.   ... View more

There really should be a documentation of all these "can be enabled by support" gems. Knowing of this option enables some new opportunities for me. ... View more

Bear in mind that just because you license devices doesn't mean that they might be supported in 2030, support depends of the model of hardware so if you have older access points by 2030 there is a good chance they won't be supported or compatible with new firmware.  ... View more

Yes, and I did configure everything in Azure first, before doing anything in Meraki. Didn't make any difference. ... View more

I have a C9300L-48UXG-4X switch running 17.15.4 and the client MAC addresses are showing correctly in the dashboard. The switch is static routing and it is connected to an MX85, which is running SDWAN 19.1.10 and using UCI for client tracking. ... View more

This is the answer I would use. ... View more

Could you please explain the third point? How would that be possible? ... View more

I also had a chat with Support and showed them the ways it's accessible. So, hopefully that will help you get case moving. ... View more

I have removed the serial number from this post. Thanks for pointing it out! ... View more

Hmm. I have used overlapping addressing between templates and sites, but I'm not sure if I have attempted to do this within a single site.   For the cases I have handled, you open a support case and request that they disable the unique IP addressing requirement.  Then it won't check, and you can assign anything you want. ... View more

You sure?  I haven't caught anything about that. I know about the org-wide GPO since Cisco Live EUR 2024 already. They could just fix the GPO's to apply it statefully on the MX. ... View more

Our older devices are still getting upgraded MX 18.211.6 → MX 19.1.10 despite being "critical" and "ineligible". Grace period? Meraki's eternal kindness and generosity? UI and docs not being clear what "critical" or even "ineligible" really are - or perhaps me not understanding them? ... View more

Good to note, we are replacing the 220-8P with this and have a lot of them now, so might hold off on this release for a minute. ... View more

I have been by Cisco folks that this is exactly what happened. ... View more

The problem with that approach Ryan is that the cameras would lose all footage when moved plus we then end up having to move sensors too that are linked to or connect to the cameras. Bit of a mess really, just need to get the access working as it should, I feel restricting access to cameras is a fundamental requirement with GDPR and segregation of duties etc. ... View more

Update - one of the MR46's that was working normally started to display the same symptoms.  You see a client with a 0.0.0.0 address, which by itself is not unusual.  However after the next refresh cycle the device is no longer visible. It never receives a DHCP address and then usually it is not on the next refresh.  Also the number of clients varies wildly from 7 to 38 and then back to 15, or whatever. Totally inaccurate and changes on every refresh.  I reopened the ticket and let support capture traces, however they were apparently stumped too.  Replacing the AP resolved the issue but I am wondering if anyone else has seen this type of issue.  ... View more

Oh okay nice.  So when a vlan is scoped it will behave like a group policy that overrides the local firewall but leave other vlans untouched. ... View more

Hi Jumbojake,   we are having the same issue. We are trying to connect an MV23X camera via Wifi, but it loses the connection all the time after 10-20 mins. I do not understand the accepted solution. Does it mean creating a SSID for the camera and applying it only to the closest AP?   Thanks   Regards  ... View more

I am personally very interested to see how a Cisco URWB bridge would work in this situation since that solution can handle all the normal LAN extention features like VLANs and broadcasts. ... View more

Ah, so that explains the odd behaviors I've been seeing on my Apple devices at home in my lab. ... View more

Both MX devices need L2 connectivity to each other to pass their VRRP keepalives.  So the FTD uplinks must either be a bridge group or interfaces connected to intermediate switches to split between both MX units. ... View more

Isn't this kind of a small gripe?  Our subdomain works fine, just have your users bookmark it.  In fact, almost all of the enterprise applications I setup do not have the capability of forwarding to SSO from their "main login page," and instead more often than not insist on using a subdomain URL they conveniently provide.  Seriously, maybe half a dozen out of the hundreds of enterprise apps I have in my org do this. What would be more convenient for you?  Going to the main login page and typing in your user address, clicking next, having Meraki do some kind of lookup on the back end to determine if your email domain is part of an an SSO organization, then magically prompting SSO?  Think about that for a second.  If you did this, you would  not be able to use email address "break glass" accounts if you needed to bypass SSO and login to your dashboard.  There's a reason larger companies do this, and it's for your security that almost all of them use subdomains. ... View more

https://meraki.cisco.com/product/cellular/wireless-wan-accessories/ma-ant-c2-b/ ... View more

+      ... View more

Looks like the page was last updated 8/8/2025 but the MS lines were updated 😥.  At least we tried. Restricting Traffic with Isolated Switch Ports  Still shows: Port isolation on MS switch models MS210, MS225, MS250, MS350, MS355, MS410, MS450 and MS425 series will block all traffic (L2/L3) between 2 switch ports with port isolation enabled in the same or different VLANs on the same switch.  ... View more