Hi,   I need to create an IPsec tunnel with another peer (which is not an MX) and then we need to gice acces to the other side only to one host on our side. I guess I have to put the entire network of the other peer under the private subnet but then how should I controll what talk to what. Is it by creating rules under the site-to-site outbound firewall rules or should I create those rules on the Security & SD-WAN -> Firewall? Or is it maybe some other way to do it?   BR  ... View more

Hi,   I am trying to configure the cisco anyconnect authentication with meraki MX but I am having some problems. I have configured the Anyconnect Settings but I am geting this error when trying to connect via anyconnect:   10:17:23 Connection attempt has failed. 10:17:24 No valid certificates available for authentication. 10:17:24 Connection attempt has failed.   The Certificate Authentication is disabled on the meraki settings for Anyconnect. I dont see any other settings with certificates references on meraki Client VPN which I can try and change.   Has anyone been through this before or has any suggestion?   ... View more

Hi,   We have an issue which is affecting several users and seems to be linked to the network they end up on. The problem comes up when users work remote and connects through meraki vpn, and Windows tries to use the VPN login as a login to the network share. We use users email addresses on the meraki Client VPN with Meraki Cloud Authentication. They are not the same login.   Users only gets the error that the network share does not exist and if you try to manually connect the network share, the login is not accepted at all.   We did not do any change on the meraki side prior to this and not after. Has anyone been in the same boat before and found a solution to this problem? Thanks for all the help. ... View more

Hi,   We are in need for a device which will be connected to one of our fortigate in our datacenter via vpn tunnel. We are looking for something flexible and easy to deploy and  we set sight to Z3C. Is there any problem with Z3C when it comes to establishing VPN tunnels with fortigate?   BR Nik ... View more

Hi,   I am trying to create a vpn tunnel with a non-meraki device but it is failing on phase-2. My appliance current version is MX 14.53 and we are using IKEv1. We are using sha1 for authentication on both phase1 and phase2. Phase1 is being successfully established but not phase2. The other side is using route-based vpn and I saw on different post here that both auto-vpn and non-meraki vpn tunnels are policy-based vpn.    My question is, if I upgrade the MX to 15.42 (latest version available), will route-based be supported then? ... View more

Hi,   I am trying to configure QoS on meraki MX84 and I have only configured it here. We have non-meraki switches and APs so I have started first with MX first.    I have created rules under SD WAN & traffic shaping and created 5 rules (the default one is disabled).    Rule #1:   Definition: All VoIP & video conferencing  Bandwidth limit: Obey network per-client limit Priority: High DSCP Tagging: AF11   All the other rules are the same when it comes to definition, bandwidth limit and priority but they have other DSCP tagging. I have configured AF21 for rule #2, AF31 for rule #3, for rule #4 is AF41 and for rule #5 I took CS0/DF - Best effort/Default forwarding.   Are these settings supposed to work for optimizing Video Conference on Teams?   Thank you in advance! ... View more

Hi,   We have some resources on azure, and users are having problem to reach the resources on the other sites via meraki mx.    for better understanding we have these sites:   - Site A (meraki MX) - SIte B (AZURE) - Site C (meraki MX)   We have an IPSec tunnel between Azure - Site B and Site A (meraki MX). And then we have Site C which is connected with Site A.   Lets say Site A where the meraki MX is, the resources behind this router are reachable from site B (Azure), but the resources on the other site (site C) are not reachable from the site B (Azure). I suppose that when it comes to rules, I am good there, because I create site to site rules and opened from the interested sites. And when it comes to routing I also assume that there automatically created.    I just don´t get where is the missing point here! I dont have any rules created in Security->Firewall. Rules are created under Site-to-site VPN, so why is it working for some resources but not for other resources.   Is there an issue with routing? But then again isn´t routing managed automatically between the sites!      ... View more

Hi,   I have three APs (one MR56 and two MR55) which are not working as expected. The network speed for the computers is very very slow (it is running on kbps), but it is working fine for mobile phones. I don´t have anything configured for traffic shaping. I have tried changing the radio settings (we are using basic indoor profile), f.ex. enabling the band steering on dual band operation, but no improve, then I disabled the 802.11ax but still no improve. I have tried things I thought might help but nothing helped. Can someone please advice what can I do to fix this issue?   Best regards ... View more

Hi,   We are going to use Meraki VPN Client, with Azure MFA, but we are experiencing some problem. The client is not able to connect. The shared secret is correct, but under the radius server setting, there is a field for another secret, which we think is a different value then the shared secret. Can someone explain what is this secret and where do we find this.           ... View more