Meraki

VictorYang · ‎May 21 2024

If those errors report at the same time. The second error might be triggered by the first one. Did you try to run the anyconnect on the server via a remote desktop? What if you managed to log on to the server directly and try again?

VictorYang · ‎May 21 2024

Unfortunately, at the moment meraki device only supports OIDs within the subset of the following MIBs: SNMPv2-MIB .1.3.6.1.2.1.1 IF-MIB .1.3.6.1.2.1 It cannot be modified to support additional OIDs

VictorYang · ‎May 16 2024

Agreed that the Z3 will not assign the same IP to a different mac address. But if the android device could use the IP it like even if it's duplicated with others. You cannot block a device to connect to an SSID. The block policy only applied after it connected. If you select those issue is created by the same device with the same Mac address. You may assign a fixed IP to it then assign the block policy. But if the device doesn't take DHCP and insist to user its' own static IP. You would need to find the device and correct the settings.

VictorYang · ‎May 16 2024

The notification is not that up to date so it might still report the old date. The date on the firmware upgrade page would be the correct date

VictorYang · ‎May 16 2024

Client VPN IP assignment is not using DHCP. So it cannot reserve the IP address

VictorYang · ‎May 16 2024

The email for scheduled upgrade would sent out if is scheduled by Meraki. If the admin scheduled the upgrade it will not sent out the emails to users. The admin would need to send the messages by themselves

VictorYang · ‎May 16 2024

Welcome to the Meraki community!

VictorYang · ‎May 16 2024

If the ICMP ping is bidirectional that would proof at least the routing is ok. I would suggest you check the firewall rules on meraki site to site VPN, AWS and the server end to check if there is any rules might block the traffic. You may take a packet capture on the VMX end and filter out DNS to check if the respond DNS has forwarded to VMX or not to narrow down

VictorYang · ‎May 6 2024

The URL www.msftconnecttest.com/redirect redirects to the MSN website. So it most likely it's the default website of the browser like Edge. In the Access Control page for the SSID, there would be a setting "Captive portal strength". You may set it to 'Block all access until sign-on is complete' and it may help to force the device to open the splash page

VictorYang · ‎May 6 2024

1. Do these rules work differently with a Z3 vs a Z1? There is no difference. Z3 and Z1 would work the same 2. Do they apply to traffic between hosts on the LAN ports? Only if you have firewall rules configured. As you check there is no additional firewall configured. I reckon you may take a packet capture via the dashboard Network-wide-->packet capture page. You may select the LAN interface and check the output if MX did forward the packet out while you testing the route. Or you may open a support case and call in for live troubleshooting

Meraki

Community

About VictorYang

VictorYang

Community Record

Badges

Re: Establish Anyconect connection on cloud server

Re: Configure Armis OID in Dashboard for SNMPv3

Re: IP Confict Alarms

Re: Firmware Upgrade Auto Scheduler

Re: Can I create reservations on Client VPN Connections?

Re: MERAKI Z3 DEVICES

Re: Hello Meraki Community

Re: Issues resolving DNS queries with vMX in concentrator mode

Re: MR44|MR46E - Clients are not redirected to the Splash Page

Re: Replaced Z1 with Z3 Local Static Routes No Longer Work

Re: Configure Armis OID in Dashboard for SNMPv3

Re: Firmware Upgrade Auto Scheduler

Re: MERAKI Z3 DEVICES

Re: Firmware Upgrade Auto Scheduler

Re: Configure Armis OID in Dashboard for SNMPv3

Re: MERAKI Z3 DEVICES

Re: Can I create reservations on Client VPN Connections?

Re: Hello Meraki Community