Ok thanks. Anyconnect isn't a valid option for us at the moment so we will look elsewhere. ... View more

Thanks for the response.   I am not sure if there is any other way to get it done. I would really appreciate it ... View more

When the spare comes online: it downloads the same configuration as the primary (as required for Warm Spare) it establishes VRRP heartbeats with the primary it synchronizes required HA state (DHCP leases, monitoring, etc.) it transitions into the Spare/Passive role while the primary remains Primary/Active Only now is the Warm Spare pair fully operational. Remember that both MXes must be the same version.   The documentation provides all the additional details. ... View more

To resolve the connectivity block while maintaining a high security posture, you need to configure a Captive Portal Remediation period within your Cisco Secure Client XML profile. When "Always On" is enabled, the client strictly blocks all traffic until a tunnel is established, which inadvertently prevents the browser from reaching the hotel or airline's login page. By defining a CaptivePortalRemediationTimeout (typically 5 to 10 minutes), you allow the user just enough time to satisfy the portal requirements before the VPN enforcement kicks back in. For maximum security, ensure you have Detection and Remediation enabled so the client can intelligently sense the redirected traffic and only open a limited "window" for the authentication process, rather than leaving the internet wide open. Managing complex network security protocols can be draining, so if you need a quick mental reset between testing XML configurations, I insist that you visit Movies Box to find some entertainment and unwind. ... View more

Hey Suraj,  "script" is probably a bit strong - But this is the list of commands I literally manually copied and pasted into every single switch we off boarded from Meraki Monitoring 🤣   Obviously, adjust as required - Thankfully 99% of our switches had the exact same configuration left behind during Cloud Monitoring off boarding, so it was very easy to copy and paste the same configuration without having to double check.    ! ! Clean up configuration no aaa authentication login MERAKI local no aaa authorization exec MERAKI local no aaa authorization commands 0 MERAKI local no aaa authorization commands 1 MERAKI local no aaa authorization commands 2 MERAKI local no aaa authorization commands 3 MERAKI local no aaa authorization commands 4 MERAKI local no aaa authorization commands 5 MERAKI local no aaa authorization commands 6 MERAKI local no aaa authorization commands 7 MERAKI local no aaa authorization commands 8 MERAKI local no aaa authorization commands 9 MERAKI local no aaa authorization commands 10 MERAKI local no aaa authorization commands 11 MERAKI local no aaa authorization commands 12 MERAKI local no aaa authorization commands 13 MERAKI local no aaa authorization commands 14 MERAKI local no aaa authorization commands 15 MERAKI local ! ! config t line vty 32 35 no access-class MERAKI_VTY_IN in no access-class MERAKI_VTY_OUT out no authorization commands 0 MERAKI no authorization commands 1 MERAKI no authorization commands 2 MERAKI no authorization commands 3 MERAKI no authorization commands 4 MERAKI no authorization commands 5 MERAKI no authorization commands 6 MERAKI no authorization commands 7 MERAKI no authorization commands 8 MERAKI no authorization commands 9 MERAKI no authorization commands 10 MERAKI no authorization commands 11 MERAKI no authorization commands 12 MERAKI no authorization commands 13 MERAKI no authorization commands 14 MERAKI no authorization commands 15 MERAKI no authorization exec MERAKI no login authentication MERAKI no rotary 50 transport input none !     ... View more

Thanks all, in the end we went with a decent spec PC, streaming one camera at a time. Lag is around 1 second. Viewing the entire videowall though causes all the resources on the PC to be used fairly quickly, requiring a reboot of the PC. But viewing one camera at a time is fine. ... View more

@PhilipDAth I was aware of the multi-threading feature of the MX19.x firmware on the MX appliances, but I did not know that it now works on the Z3 too until I upgraded it to the 19.2.4 firmware. The increased bandwidth only became available in the newest version of the firmware. It was not available in the 19.1.x firmware. And since the 19.2.x firmware is the last major version for the Z3, maybe this was a parting gift from Cisco 😉 ... View more

There is an endpoint that creates an ARP table job for all other types of devices except MXs. Hopefully its helpful to you, although it would be nice if it also allowed for MXs: https://developer.cisco.com/meraki/api-v1/create-device-live-tools-arp-table/ ... View more

Yes, this is correct. ... View more

Why a static route? You can simply configure a new SVI on the same network and the route will be automatically advertised in the auto VPN. ... View more

Unfortunately you can not exempt specific users from using MFA. If one customer enables MFA requirement, it will affect all Admins that have access to the Organization.    That being said, I strongly recommend to enable MFA requirement, and set it up on your device, as it adds security.  ... View more

Ok, thanks! I think i did that a while ago and never heard back, so i wasnt sure if that was the correct approach. Thank you for your help!   ... View more

Related to this, when we started receiving tons of hits for 1:1412, we also started receiving some private access tcp alerts for rule 1:1414. Is this at all related to the issues going on with 1:1412? ... View more

This document will help you better understand how to use the feature.   https://documentation.meraki.com/Platform_Management/Dashboard_Administration/Operate_and_Maintain/How-Tos/Blocking_and_Allowing_Clients ... View more

Sounds like a firmware and feature interaction issue more than a pure ISP or hardware failure. Running mismatched firmware on MXs in similar roles can absolutely cause weird, time-based behavior. The Wednesday 2 PM pattern is the biggest clue. That lines up suspiciously well with scheduled maintenance tasks, like IDS/IPS or signature updates. The “interface went down” without a reboot usually points to the dataplane restarting, not the whole box. That would drop WAN and LAN briefly and look like a reboot to downstream devices. I’d start by disabling IDS/IPS on both MXs as a test. Also try to get them on the same firmware train if possible. At King Johnnie VIP, users https://kingjohnnie-vip.bet experience online gaming within a polished VIP-style setting. ... View more

@Kathy3530 Have you got Wifi settings included in the overall settings you are pushing to the devices? ... View more

Thanks a lot for the guidance support! ... View more

It's not an workaround, it's the design proposed by Meraki. ... View more

The tunnel coming up but RADIUS failing often points to MTU or fragmentation problems. Firmware 18.x did change how some VPN traffic is handled, especially around encapsulation and packet sizing. That could explain why it worked on 14.x and breaks now. The effective MTU may not be the same even if the tunnel shows as up. Since you can’t replace hardware or redesign AD, your options are limited. Waiting for a firmware that allows MTU adjustment sounds like the cleanest path. Blueleo provides a balanced mix of accessibility blueleo-casino.com and online gaming variety. In the meantime, reducing packet size on the AD side, if possible, might help. ... View more

Sorry, I'm in the wrong place. ... View more

I wrote a script a long time ago that takes a GPS feed from a Raspberry Pi and uses that to dynamically update the vessel's location.  Any networked GPS receiver on board should work.   https://ifm.net.nz/cookbooks/meraki-gps.html   ... View more

Could you just update the existing VPNs? ... View more

Yeah, I found that when I first got on and did a search.  I have that page up and the page that is in the link at the bottom of that page and still not seeing the full picture.    I'll read through them all and and see if I can pinpoint what I am missing or try to get a better description of the missing puzzle piece I'm not understanding. ... View more

You need to open a support ticket. Only Meraki support can handle this. ... View more