Community Record
19
Posts
0
Kudos
0
Solutions
Badges
Aug 23 2023
6:38 AM
Thanks Larry, I know that Home Assistant has the MQTT and Node Red path. I actually moved off of HA to hubitat about a year ago for other reasons. And I would prefer not to have to move platforms again to do this! Any tips on Hubitat would be welcome! Thanks!
... View more
Aug 22 2023
11:00 AM
So… my sensors are great. But I can’t seem to make them talk to my home automation hub I use for the rest of my house. MQTT looks to be the way to do that? So I need to set up a server to act as an MQTT broker? Tips? Tricks?
... View more
Aug 22 2023
10:58 AM
So, I got a couple of MVs. But when I enroll them, i get an error saying that I lack the right licenses. When I look in my dashboard it says that I have MV-SEN licenses. But the cameras seem to want an MV license? Is there a difference? Help!
... View more
Jan 11 2018
8:16 PM
So, I made a VLAN that has a firewall rule with deny default and then assigned machines in that segment to that VLAN. Then, for good measure, I turned the port to "disabled" in the settings for the switch. Sound reasonable @PhilipDAth?
... View more
Jan 11 2018
8:02 PM
I'm not interested in a free-for-all. But just curious. How would Meraki know the user. My users authenticate to devices that are on my network. They don't authenticate to Meraki...do they?
... View more
Jan 11 2018
8:00 PM
I don't know 'bout that!
... View more
Jan 11 2018
7:35 PM
User complains that he cannot use Steam for gaming on the network due to security controls I have in place via Meraki. I look in the Firewall. I see there is a simple way to block Steam under the gaming controls at Layer 7. Is there an equally easy way to allow?
... View more
Jan 11 2018
7:31 PM
Or am I missing something??
... View more
Jan 11 2018
7:31 PM
I'm using Meraki MX to manage security on my network in conjunction with Umbrella / OpenDNS. When Umbrella throws off an alert about a device doing something funky, why can't I easily tie that to the activity from a device within my network via the Meraki dashboard? I read something about needing not one, but two VMs to do this...
... View more
Jan 8 2018
7:43 AM
Can I simply turn set the port on the switch that this device connects with to “disabled?” Everything that this device needs to talk with is actually in the same room with it—e.g., printer. Then that room feeds into a single port on an MS switch . So, if I turn that port off, isn’t that as effective as writing firewall rules and setting up VLANs? (I know it’s not as good as an upgrade or as an air-gap).
... View more
Jan 8 2018
7:34 AM
I understand the risk. I’m working to upgrade. Looking for practical advice to mitigate risk in the interim.
... View more
Jan 7 2018
7:17 PM
I could air-gap it. I have done that in the past. Frankly, for maintenance purposes, I want it to show up in the Meraki interface. There are actually several machines in that room that all run through the switch port. And none of them need internet accces, except when I want to perform some sort of maintenance without going on site. What is the best way (short of an air gap) to lock down that port—i.e., block traffic to or from devices behind that port via a policy or VLAN? Thanks. -Eric
... View more
Jan 7 2018
6:22 PM
It’s running XP. That’s the vuln. The question is whether it makes more sense to use the built in policy for the client called “blocked” or to write a new group policy that applies some sort of firewall rule or VLAN isolation. And if the latter, what should that group policy say.
... View more
Jan 7 2018
6:17 PM
Long story. But there are some pieces of medical diagnostic equipment that are essentially bundled with a computer. You can’t upgrade the computer without moving to a new set of drivers that don’t exist for newer operating systems. So, the whole bundle has to be swapped out—that’s tens of thousands of dollars. For now, I just want to prevent that machine from talking to the Internet and from receiving Internet traffic.
... View more
Jan 7 2018
4:27 PM
If I have a device that I know is vulnerable—e.g., Win XP—that I cannot yet take out of service. Is it reasonable for me to assign it a policy that blocks internet access? Is it better to put it on an isolated VLAN? Or do I need to create a physical air gap? Does the policy built into Meraki actually prevent inbound traffic for the device from the Internet? Or does it simply deny the device outbound access to the Internet? Thanks.
... View more
Dec 14 2017
8:26 AM
Is there a way that I can get an alert if an MR goes into repeater mode?
... View more
