Meraki

jimmyt234 · ‎May 28 2024

I'm with you - extra clicks now to get to the All Cases view is unneccessary!

jimmyt234 · ‎May 24 2024

Alerts and Notifications - Cisco Meraki Documentation Yes, this is possible. Configure 'additional recipients' under each alert and have it email whomever is the right contact.

jimmyt234 · ‎May 20 2024

Release notes have been updated with: Known issues - may 19th update Due to an MX 18.211 regression, networks that have traffic shaping rules configured with a "high" priority may incorrectly drop traffic being routed between VLANs or AutoVPN.

jimmyt234 · ‎May 9 2024

Yes 😄 18.210 has been pretty solid for us, hoping for the same from .211!

jimmyt234 · ‎May 9 2024

It needs to reach at least 15% global network saturation prior to being promoted to stable (Meraki Firmware Release Process - Cisco Meraki Documentation). We've seen at least a dozen customer orgs have an auto-upgrade scheduled for this version overnight, so it seems Meraki will push this one out quite aggressively to reach this limit in order to get it to stable.

jimmyt234 · ‎May 1 2024

Thanks @CarolineS , hoping it will be at the top of the queue sometime soon! 😊

jimmyt234 · ‎Apr 17 2024

I will email them - thanks 😊

jimmyt234 · ‎Apr 17 2024

@PhilipDAth wrote: Their is a beta that lets you apply a group policy for VPN users. Is there documentation / more information about this Beta feature?

jimmyt234 · ‎Apr 10 2024

Glad you got it working. 😄

jimmyt234 · ‎Apr 10 2024

You don't need this setting enabled in order to access the WAN IP of the MX remotely.

jimmyt234 · ‎Apr 4 2024

Active/Passive tunnels from MX to non-Meraki peers is tricky, as presumable the remote subnets are going to be the same. There is this documentation where you have to leverage the API and Tags to achieve the desired result, I have never tried this: Tag-Based IPsec VPN Failover - Cisco Meraki Documentation

jimmyt234 · ‎Apr 4 2024

As long as you're using the same X.509 cert SHA1 fingerprint in all Orgs and leveraging SAML Roles correctly as per the documentation that @spaladug linked too, you will be able to then users accessing all Orgs and manage the group membership in your IdP.

jimmyt234 · ‎Apr 4 2024

I am liking the new look and feel! I am a heavy user of the all posts page, to catch up on everything since my last visit, what used to happen is once I read a thread and visited this page it would un-bold the thread title and make it very obvious that I had read/seen that content, however now everything just shows the same so it is hard for me to tell what I've been through and read before since my last refresh.

jimmyt234 · ‎Apr 3 2024

A lot of fixes in this one... who's going first? Security appliance firmware versions MX 18.210 changelog Important notice USB modems with MX/Z series devices running firmware MX 18 or newer will be limited to best effort support and will not be receiving any future firmware fixes or improvements. Bug fixes Resolved an MX 18.208 regression that resulted in the firewall logging live tool stopping unexpectedly on MX75, MX85, MX95, MX105, MX250, and MX450 appliances. Fixed an MX 18.2 regression that resulted in vMX appliances improperly showing references to a WAN2 interface on the Appliance Status page. Corrected an MX 18.1 regression that could result in MX95, MX105, MX250, and MX450 appliances improperly duplicating multicast packets. Resolved an MX 18.1 regression that resulted in MX95 and MX250 appliances failing to send CDP or LLDP messages. Fixed an MX 18.2 regression that could result in traffic not being properly routed for clients when No-NAT was configured. Corrected a rare issue that could cause Event Log messages to be lost while the MX appliance was applying configuration updates. Corrected a rare issue that could result in MX75, MX85, MX95, MX105, MX250, and MX450 appliances failing to forward traffic from some clients. Fixed an MX 18.2 regression that resulted in MX75, MX85, MX95, MX105, MX250, and MX450 appliances inconsistently forwarding traffic to clients with a 1:1 NAT rule configured. Resolved an MX 18.2 regression that could result in ThousandEye’s Path Visualization failing for traffic routed over AutoVPN on MX75, MX85, MX95, MX105, MX250, and MX450 appliances. Fixed an MX 18.2 regression that resulted in MX appliance improperly dropping traffic from non-Meraki VPN peers when that traffic was received over a PPPoE uplink. Fixed a rare case that could result in non-Meraki VPN tunnels failing to form. Stability improvements for MX75, MX85, MX95, MX105, MX250, and MX450 appliances. Corrected an MX 18.2 regression that caused MX appliances configured in passthrough mode to be unable to establish VPN tunnels to tunneled SSIDs configured on MR devices. Corrected an issue that could result in MX75, MX85, MX95, MX105, MX250, and MX450 appliances configured in VPN concentrator mode failing to forward traffic received from AutoVPN clients. Fixed an issue that could result in MX250 and MX450 appliances improperly forwarding LLDP and BPDU frames from LAN out the WAN interface(s) during the bootup process. Corrected an issue that could result in MX65(W), MX67(C,W), MX68(W,CW), MX75, and MX85 appliances losing static IP configuration after entering into failsafe mode. Resolved a rare issue that could result in HTTP file downloads failing when AMP was enabled. Stability improvements for MX67W and MX68(W,CW) appliances. Corrected an MX 18.1 regression that resulted in VPN status information about WAN2 not being properly reported. This resulted in the information on the VPN status page being incorrect. Corrected an MX 18.107.7 regression that could cause MX appliances that 1) have Mandatory DHCP enabled and 2) are rebooted to encounter severe disruptions to network traffic. Fixed a rare issue that could occur during firmware updates that resulted in MX appliances unexpectedly having configurations that were out of date. Resolved an MX 18.2 regression that resulted in MX appliances not honoring flow preferences for Internet traffic when the preferred uplink was cellular. Devices operating under the SD-WAN+ license were not affected. Stability improvements for MX75, MX85, MX95, MX105, MX250, and MX450 appliances. Legacy products notice When configured for this version, Z1 devices will run MX 14.56. When configured for this version, MX400 and MX600 devices will run MX 16.16.9. When configured for this version, MX64(W), MX65(W), MX84, MX100, and vMX100 devices will run MX 18.107.9. Known issues status This list is being reviewed and updated. Many existing issue reports have not been confirmed to affect MX 18.2XX firmware versions. Known issues MX appliances that have configured adaptive policy may encounter frequent connectivity state changes for AutoVPN tunnels. Devices manufactured by Ingenico may experience an unstable physical Ethernet connection when directly connected to MX68(W,CW) appliances. Due to rare issues, MX250 and 450 appliances may encounter unexpected device reboots. The Non-Meraki VPN service may fail to properly establish IKEv2 tunnels when the MX appliance is acting as the IKEv2 responder and many allowed subnets are configured. In rare cases, MX67C, MX68CW, and Z3C appliances may fail to enter into a "Ready" state despite being able to register to a cellular network and obtain an IP address for the modem. Due to an issue with no known method of reproduction, the IDS and IPS process may unexpectedly restart. Due to an MX 18.2 regression, MX75, MX85, MX95, MX105, MX250, and MX450 appliances will fail to form AutoVPN tunnels with other MX appliances via their LAN interfaces. Other Added support for reporting CellID on the local status page for Z4C appliances. Added support for configuring PPPoE uplinks without a password on the device local status page. Added improved input validation on the device local status page when configuring the gateway IP address for WAN interfaces.

jimmyt234 · ‎Mar 26 2024

Another good one to sub to is the new features feed: https://community.meraki.com/t5/Feature-Announcements/bg-p/new-features Also the global Meraki status page: https://status.meraki.net/

jimmyt234 · ‎Mar 25 2024

https://documentation.meraki.com/General_Administration/Firmware_Upgrades/Product_Firmware_Version_Restrictions

jimmyt234 · ‎Mar 22 2024

https://sites.google.com/meraki.net/merakitechtuesdays/recordings

jimmyt234 · ‎Mar 1 2024

I would go up to .8, not down to .2

jimmyt234 · ‎Feb 29 2024

+1, I believe locally sourced traffic will not abide by your layer 3 policies.

jimmyt234 · ‎Feb 29 2024

The firmware status for 18.107.x seems broken to me, as if you're running 18.107.2 it will say you're good whereas if you're running anything from .3 - .7 it will say warning/critical because there is a .8 patch available.

jimmyt234 · ‎Feb 28 2024

We've had 18.208 pushed to a lot of customers and had a myriad of issues which were resolved by rolling back to 18.107.X: - 1:1 NAT issues - non-Meraki VPN peer issues - random reboot issues

jimmyt234 · ‎Feb 28 2024

We've experienced the same problem and had to rollback to 18.107.x

jimmyt234 · ‎Feb 26 2024

Anyone else getting a new Assurance menu today? Seems to be collating a few bits from under Network-wide...

jimmyt234 · ‎Feb 26 2024

This may do something similar (haven't tried it, so can't verify): Francisco-1088/merakiLifecycleReport - Cisco Code Exchange

jimmyt234 · ‎Feb 23 2024

There is still no way to do this other than the workarounds already discussed.

About jimmyt234

jimmyt234

Community Record

Badges