Yesterday it happened again on site-to-site VPN and Traffic Shapping rules. There is no announcement from Meraki about this issue. I tried the workaround presented by MrChips but did not work this time. Anyone have information regarding it? Thanks.
... View more
Giving access to lots of information actually often makes customers' working lives much more complex. If you have an issue, your license allows you to contact Meraki Support - let them worry about the complexity of (for example) When does CPU utilisation become excessive? Meraki is pretty obsessive about making technology as simple as possible. (BTW - if you haven't found it before, Meraki makes available an overall MX appliance utilisation number, under Organization > Summary report)
... View more
All of the devices run the exact same profile. Our use of MDM is very limited we just want the ability to enable single app mode and power cycle devices. I poured over the Settings and I can’t find any restrictions settings that would disable users from deleting apps or moving them around.
... View more
Hi @trunolimit as @RomanMD said the available option for traffic flows can be configured in Security & SD-WAN > (configure) SD-WAN & traffic shaping Uplink selection > flow preference - L3/L4 filters or SD-WAN Policies > VPN traffic - for SD-WAN traffic, L3/L4 - L7 filters Both configuration are a 'preference', if the specified uplink is down the MX will use the other uplink (if available) Cheers Sandro
... View more
The site2site vpn with two MX'es in different organizations is considered as Non-Meraki VPN. To build the site-2-site VPN with MX'es in two organizations is easy enough. One just must note that he needs to specify the subnets he's advertising, and have to match the IPsec policies on both ends. If the MX'es are the only site-2-site appliances in the organization, they must be set as HUB.
... View more
Hi @trunolimit , Your best option is to get their engineer on the phone and you both go through the settings one by one. Some companies are pretty good at this some not so. It does save time to’ing and fro’ if with logs etc.
... View more
@RichardChen1 wrote: Check this out: https://www.willette.works/mx-warm-spare/ Yeh... There's falsities in that and I would not recommend you follow that guide. There are some good things in there, but the whole heartbeat thing is not truly possible and very misleading.
... View more
I gotta give you credit though. I forgot you can add commas to simplify rules. I fixed my mistake after seeing your genius simplification. Also I expanded the solution to include all of entire private subnets, you know, just in case. 10.0.0.0/19, 172.16.0.0/12, 192.168.0.0/16
... View more
@trunolimit Here's a quick question I have for you. We're these older iPads purchased through somewhere besides Apple and are the newer iPads purchased through Apple? This sounds more like a DEP issue rather than a Meraki issue. Apple DEP guide
... View more
@MattPainter701 The solution works like a charm for us. I've not tried the PS script as I just logged into the forums so I cannot comment on that solution. If you use the MDM there is an option for VPN's listed, but I've never used it before.
... View more
Just to close the loop, the issue stems from Sonos building their own Mesh network. If two units are hardwired and they're in close proximity to each other to build a mesh it causes a network loop that sometimes STP doesn't deal with. Sonos does not give you the ability to turn this "feature" off. Hopefully anyone else who lands here searching for a solution to this problem find this helpful.
... View more
Unfortunately I never did. My understanding of IP helper was wrong. IP helper only facilitates DHCP across subnets. unfortunately Sonos just doesn’t work across subnets. what you can do is set up a guest SSID but use firewall rules to stop anyone from accessing any resource other than the Sonos.
... View more
