• About SLR
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Re: AnyConnect VPN support for MX devices

by in Security / SD-WAN
Friday
1 Kudo
Friday
1 Kudo
Haha, yeah I don't see them giving this away for free. It's obviously incredibly amazing software since it's taken years to develop. ... View more

Re: Active Time Calulation

by in Dashboard & Administration
‎05-26-2020 05:27 AM
‎05-26-2020 05:27 AM
16 Hrs is not possible for someones shift hence why the confusion in the numbers. I kind of figured the 2 was not cumulative but was not sure.  I am just trying to figure out how Meraki totals the Active Time to make more sense of it. ... View more

Re: Question - Traffic Shaping Rules

by Kind of a big deal in Security / SD-WAN
‎05-06-2020 08:34 AM
3 Kudos
‎05-06-2020 08:34 AM
3 Kudos
Yes.  But dscp does nothing (only setting value) at the mx itself (except for dscp 46)     Priority does effect the weight. https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/Using_Packet_Prioritization_on_a_Traffic_Shaping_Rule     ... View more

Re: [CONTEST ENDED] This contest is ON POINT.

by in Community Announcements
‎04-22-2020 01:52 AM
‎04-22-2020 01:52 AM
Nice!  😍 ... View more

Re: Bypass Meraki Splash pages in 10 secs to gain unrestricted Internet acc...

by in Wireless LAN
‎03-24-2020 02:43 PM
‎03-24-2020 02:43 PM
I've dealt with this using a workaround for locations without an upstream firewall. Workaround: Apply a traffic shaping rule to limit bandwidth on port 53 and other ports that might be used by a VPN. Users attempting to bypass splash pages to access the internet over VPN will not likely use your network if they only get 100 Kbps. Real Solution: Use an upstream MX or other firewall to block VPN attempts on port 53. Make sure not to block your DNS server such as 8.8.8.8. Root Cause: When client devices connect to the MR they are placed in a captive portal policy and the MR firewall rules (L3 and L7) do not get applied to the client devices until after they authenticate with the captive portal. However the traffic shaping rules are indeed applied to clients, and you can limit the throughput of VPN traffic. Documentation error: In my testing, MR Traffic shaping rules are indeed applied before splash page authentication. "When splash page authentication is configured, captive portal strength settings take precedence over configured traffic shaping and firewall rules. This means traffic shaping and firewall rules will only apply after Splash page authentication has occurred successfully." Documentation Link: https://documentation.meraki.com/MR/MR_Splash_Page/Configuring_Splash_Page_Authentication_with_an_LDAP_Server ... View more

Re: Disabled 802.11ax capabilities

by in Wireless LAN
‎02-12-2020 01:08 PM
‎02-12-2020 01:08 PM
I agree - we put the MR55 in our new building and have had nothing but issues but the AC gear in our other buildings have no issues ... View more

Re: Updating WAN configuration

by Kind of a big deal in Security / SD-WAN
‎01-30-2020 02:55 AM
‎01-30-2020 02:55 AM
If the device is online you should be able to manage it through the Meraki website.  The link will start with something like https://n123.meraki.com   When you login with your dashboard credentials (you will have needed to set up a dashboard account to claim the license for the mx100) you should see the web portal monitoring and configuration pages.   Did you get a license with the device? ... View more

Re: Meraki Layer 7 Firewall is based on Best Effort

by in Wireless LAN
‎01-27-2020 07:01 AM
‎01-27-2020 07:01 AM
Hello Randhall,   Many thanks for the update ! I'm currently checking what were the improvements in MR26.x and I see interesting things, such as: - Bug fixe in MR26.1: Facebook app not blocked by Layer 7 firewall rules (All MRs)   "My" current version is MR25.14, but the next available Stable candidate is MR26.6.1. I will check this. Regards. ... View more

Re: Even with driver updates - windows 7 machines are experiencing slow con...

by in Wireless LAN
‎01-20-2020 10:47 PM
‎01-20-2020 10:47 PM
How long have organisations resisted upgrades to Win 10? Do they downgrade new laptops and workstations to Win 7 from Win 10? Chicken-Little springs to mind. Microsoft ends Windows 7 support: What should you do? The UK government has admitted that Win 7 is insecure (they allege the ransoming of National Health Service could not have happened if hospitals were running Win 10). Win 7 has been branded as unsafe for online use. So it is "OK" for hospitals? Duh, they live in an online world (well their clinical staff do, the administrators are another matter entirely). There are some interesting costs set out in the BBC article, Australians would be interested. ... View more

Re: Meraki Wifi SSID - Prompt for credentials before windows logon

by in Wireless LAN
‎01-16-2020 05:44 AM
‎01-16-2020 05:44 AM
Can you give an example of what the Group Policy would look like on the DC  so I can pass it on to the infrastructure side? Would it look like this -  Create a new GPO that is assigned/permissioned to the machines/users on the domain?   I only ask as it has been a while since I have been on infrastructure GP DC side of things 🙂 ... View more

Re: [CONTEST CLOSED] A Guest Community Challenge!

by Community Manager in Community Announcements
‎12-13-2019 11:35 AM
5 Kudos
‎12-13-2019 11:35 AM
5 Kudos
Thanks for a fun challenge, @BlakeRichardson! Congrats to our randomly selected winners, @SeaTec and @r_timmons!  ... View more

Re: Special Event Announcement

by Kind of a big deal in Off the Stack
‎11-13-2019 01:19 AM
2 Kudos
‎11-13-2019 01:19 AM
2 Kudos
Oh the irony, I tried to view the recording from my commuter train WiFi and Umbrella blocked me 🤣 ... View more

Re: MR42E - Mix Antennas?

by A model citizen in Wireless LAN
‎10-31-2019 09:17 AM
‎10-31-2019 09:17 AM
Since the AP's are not in the same area you may be ok but I still would be worried about devices seeing both ap and jumping back and forth and dropping. Hopefully, someone else can chime in but I think you should be good. ... View more

Re: MR 55 Firmware 26.5 Beta

by in Wireless LAN
‎10-29-2019 06:11 AM
‎10-29-2019 06:11 AM
Thank you. I will try that. ... View more

Re: [SURVEY ENDED] Time for a survey — and another chance to snag swag!

by in Community Announcements
‎09-28-2019 05:45 PM
2 Kudos
‎09-28-2019 05:45 PM
2 Kudos
@CarolineS   I finally got that Meraki Yacht Club swag out on a boat!   😁   ⛵   S/V Azzurra, a Jeanneau Sun Odyssey 479, out of Marina Scarlino in Italy.     ... View more

Re: 2 VLAN for Same SSID Meraki AP with Radius Authentication

by Kind of a big deal in Wireless LAN
‎09-12-2019 12:49 PM
‎09-12-2019 12:49 PM
Looks good to me, although I think you can (maybe should?) turn off the radius override stuff for this test. Also assuming there are not any other access points involved, should be fine leaving the 'all other APs' to 1 as well. ... View more

Re: Meraki Dashboard Extrememly Slow

by in Dashboard & Administration
‎09-10-2019 05:36 AM
‎09-10-2019 05:36 AM
So I am on shard n180.  When I was on the phone with support yesterday it took 25 minutes per change.  We tried several networks to confirm it wasn't specific to a site.  We have the same firewall's everywhere and normally these changes take less than a minute.  Support concluded that there is definitely something wrong in the back end and she kicked the ticket up.  I will keep you guys informed.  ... View more

Re: Meraki AP & Radius Integration

by in Wireless LAN
‎09-03-2019 07:55 AM
‎09-03-2019 07:55 AM
Did anyone have to create policies in the Meraki Dashboard? We are not doing policy based... ... View more

Re: Music on hold preferences and recommendations?

by in Off the Stack
‎08-27-2019 03:16 PM
‎08-27-2019 03:16 PM
Anything!  for the love of god anything other than this 15 second Hell Loop ... View more

Re: iOS and WPA2 with Radius Authentication

by in Wireless LAN
‎08-26-2019 11:04 AM
‎08-26-2019 11:04 AM
@SLR If you are connecting with WPA-PSK this does not apply.  This is only relevant if you want to add your phone/handheld devices to the corporate wifi that uses Radius with domain authentication.  Hope this helps. ... View more

Re: tariffs and increase in pricing (Cisco Products)

by in Switching
‎08-20-2019 02:21 PM
‎08-20-2019 02:21 PM
Our Meraki pricing, as of last week anyway, hasn't increased.   ... View more

Re: Enable MFA for logging into Dashboard only

by Kind of a big deal in Security / SD-WAN
‎08-16-2019 04:25 PM
2 Kudos
‎08-16-2019 04:25 PM
2 Kudos
We tend to do a lot of experimenting.   We have both Google Authenticator setup (easy), and SAML against Azure AD (difficult to setup) - and we have MFA enabled for Azure AD, so that uses the Microsoft Authenticator.   NPS+Azure AD MFA is a pain because of the lack of logs and diagnostics when things go wrong.  If you want MFA for client VPN use a third party solution, like the Duo RADIUS server.     If you want to enable "global" MFA for the Dashboard use a third party SAML provider like DUO.  You can also use AzureAD if you don't mind doing a bit of extra setup work and Googling. We use AzureAD because we already use Office 365, and it was more convenient to have the one system for everything. ... View more

Re: [CONTEST CLOSED] The Points Contest is BACK!

by in Community Announcements
‎08-07-2019 05:49 PM
‎08-07-2019 05:49 PM
5 points 🙂 ... View more

Re: Netgear managed switch disappears from client list

by in Switching
‎08-06-2019 09:09 AM
1 Kudo
‎08-06-2019 09:09 AM
1 Kudo
Right again guys. Configured NTP on each of the switches and they bounce a monster 1k around now on the client list 😉 . Great idea. ... View more
My Accepted Solutions
View All
© 2020 Meraki