About SLR

Asamoah

This is great!!!

MarcP

So got a answer from the Support team: Support: From Dashboard you will only be allowed to disable one WAN uplink at the time. If you disable WAN2 you will not have the option to disable WAN1 as well but if WAN 2 is enabled you will have the option to disable WAN1. If you disable WAN2 in Dashboard and disconnect the WAN1 cable from your MX you will that the device will completely lose Dashboard connectivity because the WAN 2 is disabled. The ready status displayed in Dashboard for a disabled interface means that in case you decide to re-enable it the connection will be functional. Me: So it really is disabled, BUT its not shown as disbabed like other ethernetports, which are disabled and shown grey? Support: Yes, that is correct. The WAN ports are just showing "Configured as: Disabled"

NFL0NR

how much longer is 15 going to be in beta? I've been hearing about "the wonderful advancements in firmware 15" for about 6 months.

IanH

Very impressive, congratulations well deserved to all, we should thank you all for your feedback on all the topics ! Many thanks Ian

SGenin

The app uses DNS port to create a tunnel and channel all traffic inside it. It seems that Meraki is allowing DNS traffic to any IP in the background, even if our SSID settings are configured to block all traffic than the one listed in the walled garden. Now the good news, pending further tests, is that we were able to block the app by creating layer 3 firewall rules preventing to use any DNS other than the DHCP provided ones but at MX level. Unfortunately when creating the same set of rules with the MR layer 3 firewall, it doesn't work and the tunnel can still be established over DNS. So 2 problems: 1. Meraki allows DNS traffic to any server during the pre-auth phase. This makes it vulnerable to these apps creating tunnels over DNS. 2. The MR layer 3 firewall is not blocking DNS traffic for the SSID as opposed to the MX firewall. This makes it difficult to scale up a patch as our LAN clients are not using the same DNS servers (it's typically upstreamed to the ISP DNS).

MarcP

Yes, they work as normal as if you would have something else from meraki there.

SLR

@BrechtSchamp is on a roll :)

Robamat

A company called openeye has a comedian telling jokes As a Networking company might it not be better to have snippets of tech news or phases for practice exams :-)

BrechtSchamp

Indeed, what mattia said:

SLR

that is exactly what it was. We were using VLAN override. I just wanted to be sure that I was doing it correctly. I had the following set up: 1 Tunnel-Type = "VLAN", 2 Tunnel-Medium-Type = "IEEE-802", 3 Tunnel-Private-Group-ID = "128" I kept the 1st two attributes and then removed the third one. Everything worked as it should.

SLR

I would love to attend ECMS2 since I am already CMNO. Looking forward to learning more.

SLR

My flight didn't make it in time. Will there be any virtual online course learning for this?

kYutobi

I know for now people are doing a lot of workarounds but haven't heard anything new about them working on this.

MeredithW

Thanks everyone for sharing your stunning new avatars! Our two randomly selected winners are: @Wazz and @JM. Congratulations!

MeredithW · ‎06-03-2019

Congratulations to our contest winners, @Franzman and @nbentsendk!👏👏👏🎉

arekdreyer · ‎05-22-2019

That thermal bottle is pretty nice! Thank you!

Doke · ‎03-22-2019

http://setup.meraki.com try going here and using your serial number as the username. must be connected to the MX in question.

MMoss · ‎03-13-2019

Should open a new ticket, this one is dead and buried back in 2017 lol. That said if you change the Firewall and set the static IP you need to reboot the modem afterwards or it won't release the ISP DHCP IP it was assigned, only after the Meraki is static'd and the modem rebooted. Well that was my experience with Suddenlink

CarolineS · ‎07-18-2018

And, we have a winner!! Congratulations to @BrothersTM for receiving the most votes for his video tip, Switch Port Tagging

CarolineS · ‎06-05-2018

@msmith1356 wrote: I'm going too! Tell me it's the Meraki Hawaiian shirts...tel me it's the Meraki Hawaiian shirts!!!!! Can't wait to see ya'll!! PS, shirt size XL @msmith1356 - you'll be glad to know that I *just* got my hands on an XL Hawaiian shirt! It's yours! I'll PM you to make sure I get the right mailing address to get to you before (or at) Cisco Live.

SLR

Community Record

Badges

Re: The Points Contest is BACK!

Re: Disable wan port

Re: AnyConnect VPN support for MX devices

Re: Congrats to our June 2019 MOTM winners!

Re: Bypass Meraki Splash pages in 10 secs to gain unrestricted Internet acc...

Re: Use MR33 without Meraki Appliance

Re: Points Contest: Week 1 Roundup

Re: Music on hold preferences and recommendations?

Re: Summary Report for All Networks

Re: Meraki AP & Radius Integration

Re: ECMS2

Re: Sign up for DevNet Express at Cisco Live - Space is limited!

Re: Cisco AnyConnect VPN support for MX devices

Re: [CONTEST CLOSED] Update your avatar, win Meraki swag!

Re: [CONTEST CLOSED] Wi-Fi 6: tell us your hopes and dreams!

Re: [CONTEST ENDED] This contest is ON POINT.

Re: Internet 1 Port not working after change - MX65

Re: Bad IP Assingment

Re: Our first video challenge: Share your top Meraki tip — and win big!

Re: If you're attending Cisco Live Orlando - TELL ME!

AnyConnect VPN support for MX devices

Re: This contest is ON POINT.

Re: Update your avatar, win Meraki swag!

Re: Congrats to our June 2019 MOTM winners!

Re: ECMS2