Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
About nikmagashi
Community Record
49
Posts
11
Kudos
1
Solution
Badges
Jun 1 2023
12:41 AM
Hi, I need some information regarding the licensing of MX68CW. What kind of a license can I use for it in order to be able to manage it through dashboard. Can I use an MX68 license for it? BR
... View more
Labels:
- Labels:
-
Other
Apr 25 2023
12:43 AM
We have a fortigate on the HQ and MX67 on the branch office. I called today meraki support and they helped me with this problem. They activated the NAT feature where I could later choose to disable the NAT on the internet port on meraki or even on the specific vlan if I want to. Of course this should be taken with precaution since the inbound rules are in allow state now but we do have a firewall on the HQ which controll everything.
... View more
Apr 24 2023
11:27 AM
Hi, We have an mpls line from HQ to a branch office. We had on both sites fortigates and worked good. On the branch office we replaced the fortigate with a MX67 and now we are having problems with the traffic that comes from the HQ to the branch office. The mpls line terminates in internet port in the MX67. So all the trafic from the MX is sent through the mpls to the HQ firewall. We can ping the networks on the HQ from the MX67 internal vlans, but doing it from the HQ to the branch offices MX the ping never respond back. I know it might have something with the NAT on the internet port on the MX but I need to be sure if someone has had the same issue. When I look at the route table I see a default route 0.0.0.0/0 through the wan interface. It worth mentioning that I have not created any static route on the MX! BR
... View more
Labels:
- Labels:
-
Firewall
Dec 22 2022
12:28 AM
Hi, We want to configure a guest wifi which the password will be handled by the recepsionist or by sms. Actually it is not a big deal how but we want that every wifi client to have a random password to be able to join into the network. I have read about the splashaccess. but I want to see what are other options out there and if anyone has already implemented this solution? BR Nik
... View more
Labels:
- Labels:
-
SSID
Nov 24 2022
4:12 AM
Hi, We have some problems with perfomance issues and this started with the firmware upgrade. We run now 17.10 and we have 1 gbps circuit but the clients are reaching maximum 200 mbps. We have advance security license and we have AMP and also IDS/IPS enabled. It does not help even if I disable these features. The speed never reaches more than 200 mbps. Has anyone else had this problem came up after the firmware upgrade? BR
... View more
Nov 24 2022
2:52 AM
All right, so If I want to allow the 3rd party endpoint (their network, lets say 10.0.2.0/24) to talk with only one host on my end (for example 10.0.1.10/32) then I allow first only the source 10.0.1.10/32 to talk to 10.0.2.0/24 and then deny source 10.0.1.0/24 to destination 10.0.2.0/24. with these two rules the other part would be able to talk only to that specific IP adress but not to the entire network. Is my logic correct?
... View more
Nov 24 2022
1:49 AM
Hi, I need to create an IPsec tunnel with another peer (which is not an MX) and then we need to gice acces to the other side only to one host on our side. I guess I have to put the entire network of the other peer under the private subnet but then how should I controll what talk to what. Is it by creating rules under the site-to-site outbound firewall rules or should I create those rules on the Security & SD-WAN -> Firewall? Or is it maybe some other way to do it? BR
... View more
Labels:
- Labels:
-
3rd Party VPN
-
ACLs
-
Firewall
Nov 7 2022
1:35 AM
Hi, I am trying to configure the cisco anyconnect authentication with meraki MX but I am having some problems. I have configured the Anyconnect Settings but I am geting this error when trying to connect via anyconnect: 10:17:23 Connection attempt has failed. 10:17:24 No valid certificates available for authentication. 10:17:24 Connection attempt has failed. The Certificate Authentication is disabled on the meraki settings for Anyconnect. I dont see any other settings with certificates references on meraki Client VPN which I can try and change. Has anyone been through this before or has any suggestion?
... View more
Oct 18 2022
4:24 PM
Hi, I have an ipsec tunnel to a meraki MX and users behind the MX are complaining sometime that they cannot reach the resources back behind the fortigate. We solve this immediately by doing a ping from one of the servers behind the fortigate to the local network behind the MX. So basically if we have a continuosely ping the users will never experience connection problem, but without it the tunnel seems to go down. I have recreated the tunnel, I have enabled auto-negotiate om the fortigate but still the same issue. Has anyone had this problem before? BR Nik
... View more
Labels:
- Labels:
-
3rd Party VPN
-
Firewall
Sep 20 2022
1:51 AM
2 Kudos
Thank you Philip. It did work, your memory seems to be right. 🙂
... View more
Sep 19 2022
1:13 AM
Hi, We have an issue which is affecting several users and seems to be linked to the network they end up on. The problem comes up when users work remote and connects through meraki vpn, and Windows tries to use the VPN login as a login to the network share. We use users email addresses on the meraki Client VPN with Meraki Cloud Authentication. They are not the same login. Users only gets the error that the network share does not exist and if you try to manually connect the network share, the login is not accepted at all. We did not do any change on the meraki side prior to this and not after. Has anyone been in the same boat before and found a solution to this problem? Thanks for all the help.
... View more
Labels:
- Labels:
-
Client VPN
Oct 24 2021
12:23 PM
Thanks a lot PhilipDAth, I think one-arm vpn concentrator is a solution here as we can standardize this and manage it easier.
... View more
Oct 21 2021
6:42 AM
Hi, We are in need for a device which will be connected to one of our fortigate in our datacenter via vpn tunnel. We are looking for something flexible and easy to deploy and we set sight to Z3C. Is there any problem with Z3C when it comes to establishing VPN tunnels with fortigate? BR Nik
... View more
Oct 14 2021
5:40 AM
2 Kudos
On the link you sent me I cant find that these E3372h-230 are supported. The ones that are supported are the "sticky" model and not the ones with "h" or hilink as they are refered to. Anyway I have opened a case via meraki dashboard and I will see If I will get an answer to this question.
... View more
Oct 13 2021
6:04 AM
Does anyone know if Huawei E3372h-320 is supported by meraki MX64. We are having problems with it when connecting to the firewall, it just hangs on "connecting" and never get to "ready" state.
... View more
Oct 9 2021
1:33 AM
Ok, so I just need to tag the ports on the switches and no need for the vlan to be created on the MX:es (Addressing and vlans). Do you think the cabling is ok?
... View more
Oct 8 2021
3:34 PM
Hi, We are going to implement MX warm spare with two MX:es but we have only one ISP connection. I have checked a little on meraki docs but I can't find any design which cover this. We have two MX:es and two MS:es. So my thought on this is that I use a special vlan on the switches for wan interface, like I would dedicate port 1and 2 on both switches for ISP vlan and then connect that one ISP on one of these ports. Not so redundant but is this something that will actually work with Meraki?
... View more
Sep 15 2021
1:07 AM
Hi, We have implemented a new telephony system in our offices but the users are having problems when calling from one office to another office. The line just goes down at the same time on both ends. We use auto-vpn between the sites and we have full communication, nothing limited between the sites. Also the traffic to internet is straight out with nothing limited/blocking. Has anyone else had this kind of problem before with auto-vpn?
... View more
Labels:
- Labels:
-
Auto VPN
Jun 4 2021
12:37 AM
Hi PhilipDAth, I do have my own suspicions also, but we will check and see what is going on there. Anyway thank you all for giving me different views on this case. I really appreciate this.
... View more
Jun 3 2021
7:46 AM
Yes we do have open SSID but they get IP addresses from a sever on a lan.
... View more
Jun 3 2021
6:28 AM
No, the traffic from the APs (mgmt vlan) goes through the internet (destination ALL). There is no defining in this case if you are asking about this.
... View more
Jun 3 2021
6:12 AM
We are using kiwi syslog and it is the fortigate who is sending the logs on the kiwi and then from kiwi, we upload the data to cloud app security for better reporting. Meraki is not involved on the data collection. The list with IP that I sent before represent the IP adresses of the meraki APs itself. Here is a screenshot of the cloud app security report which takes Meraki Dashboard on first place with 44.5 TB of data sent. Under meraki are other apps for example, Microsoft Teams etc etc, but on top of it is Meraki Dashboard. ..and when clicking on Meraki Dashboard we get then the IPs below, which belongs to the APs and in this case this means that the APs are sending this amount of traffic toward the meraki dashboard. It is probably normal but It is also a lot for single APs to sent this much traffic on meraki dashboard.
... View more
Jun 3 2021
1:31 AM
Thank you Bruce for clearing this for me. We have to look more into this back with my team members as to why the syslog server presents this data to us as and this much of traffic sent by the APs toward the Meraki Dashboard. You can see the APs (just some of them who sends most of the traffic) and their amount of traffic sent to Meraki Dashboard.
... View more
Jun 3 2021
12:22 AM
1 Kudo
Hi cmr, As I mentioned before we see this on the cloud app security (in Azure) that the APs are sending TB data toward meraki dashboard. So the setup seems like this, there is a firewall (fortigate) that sends all data traffic toward a kiwi server (syslog) and from there via ftp these data uploads on the cloud app security which processes the data and presents on a better way (as a report). I can see on meraki dashboard this: This is a very big organization. The usage for last week is this below: So, what I am looking to clear it out is this, the data we see here, are these data that are being sent to the meraki dashboard (usage) or are these just statistical data that Meraki reports how much traffic the users have been using. Anyway, on the syslog server we can see that there is this amount of data sent toward the meraki dashboard, so I am guessing this data are not just presented as statistical but these are real data sent toward meraki dashboard. Correct me if I am wrong please.
... View more
Jun 2 2021
4:25 AM
Hi, We are recently doing a security assessment and we see TB traffic going from access points to the meraki dashboard. I don´t know if this is something normal but I went through this link: https://documentation.meraki.com/General_Administration/Monitoring_and_Reporting/Client_Details_Page_Overview and I do see that the APs sends traffic but should this be just statistical traffic and not the real raw traffic. How should I translate this?
... View more
My Accepted Solutions
| Subject | Views | Posted |
|---|---|---|
| 3840 | May 25 2020 12:49 AM |
My Top Kudoed Posts
| Subject | Kudos | Views |
|---|---|---|
| 3 | 3840 | |
| 2 | 1254 | |
| 2 | 1675 | |
| 1 | 5021 | |
| 1 | 1992 |
© 2024 Cisco Systems, Inc.
