The Meraki Community
Register or Sign in
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
  • About Kyojuro
Kyojuro

Kyojuro

Here to help

Member since Dec 13, 2021

Tuesday
Kudos from
User Count
TheAlchemist
TheAlchemist
1
View All
Kudos given to
User Count
MarcP
MarcP
1
View All

Community Record

22
Posts
1
Kudos
0
Solutions

Badges

First 5 Posts
Lift-Off View All
Latest Contributions by Kyojuro
  • Topics Kyojuro has Participated In
  • Latest Contributions by Kyojuro

Ugly Patch Panel Cables

by Kyojuro in Switching
Monday
Monday
Hello,  This isn't necessarily a Meraki MS post but a general networking question.  I recently setup a network closet picture attached and while everything works perfectly, the cables look "ugly" due to it being stiff and twisting which doesnt look very good.  Does anybody know a trick to straighten the cables out so they look better?      Thank you.        ... View more
Labels:
  • Labels:
  • Other

Changing the Wifi Password for Multiple Networks at the Same time

by Kyojuro in Wireless LAN
‎08-29-2022 02:02 PM
‎08-29-2022 02:02 PM
Is there a way to change the Wifi password for multiple networks at the same time (for same SSID) We have over 20 Networks and was wondering if there was a faster way to change the Wifi password for the same SSID in each of those networks all at once.   Thank you.  ... View more
Labels:
  • Labels:
  • SSID

Re: With Traffic Shaping disabled, why would I see consistent traffic on Wa...

by Kyojuro in Security / SD-WAN
‎08-26-2022 11:03 AM
1 Kudo
‎08-26-2022 11:03 AM
1 Kudo
Do you have both load balancing and Active-Active Auto VPN turned off?  Do you have any set flow preferences that's going out WAN 2?     ... View more

Way to setup a static route for one IP address

by Kyojuro in Security / SD-WAN
‎08-04-2022 03:27 PM
‎08-04-2022 03:27 PM
Hello, We currently have a static route on the Meraki pointed at an IP address on the network. Is there any way we can have a client statically routed through another route to the same destination IP address for testing purposes?    For ex.    Static route set for for xxx.xxx.1.2 next hop to is through xxx.xxx.xxx.2 but for only one host I want a static route for xxx.xxx.1.2 next hop to is through xxx.xxx.xxx.3 I want to use source based default routes for this but it is by VLAN and not by individual IPs. Which means I cannot select a device that's within the same VLAN as other devices.    Any ideas for this one?  ... View more

Re: Meraki Site to Site VPN Disconnect

by Kyojuro in Security / SD-WAN
‎08-03-2022 07:54 AM
‎08-03-2022 07:54 AM
To anyone who was interested in this one, the ISP actually had some routing issues on their side with another ISP's external IP addresses.  ... View more

Re: Troubleshooting Non Meraki VPN Peers

by Kyojuro in Security / SD-WAN
‎07-28-2022 02:48 PM
‎07-28-2022 02:48 PM
Have you tried applying the All Non-Meraki / Client VPN filter in the event logs? Seems like that's what Meraki recommends for Non Meraki peer VPN traffic.  ... View more

Re: Device/user loses Internet access after connecting to Client VPN

by Kyojuro in Security / SD-WAN
‎07-28-2022 02:27 PM
‎07-28-2022 02:27 PM
I've had this issue in the past and it worked after I did a firmware upgrade to latest version. Is your MX on latest firmware? ... View more

Meraki Site to Site VPN Disconnect

by Kyojuro in Security / SD-WAN
‎07-28-2022 02:12 PM
‎07-28-2022 02:12 PM
Hello,  Im having an issue with a new network setup that cannot connect to 5 site to site VPN networks but is able to connect to rest of the other networks (+10)  Not sure what is special about the 5 as those networks only has connection issues with this new network as well and can connect to all of the other networks.  Meraki support is stating that the new network ISP is blocking the 5 VPN IP addresses and the ISP is stating that the network firewall is blocking the 5 external IPs.  I have captured packets where the new network MX is able to ping out to the 5 networks and the 5 networks receives the pings but when they reply back, nothing makes it back to the new MX.  I have tried upgrading firmware to latest version, rebooting the MX multiple times it's just the 5 networks that does not connect.  I have checked with Meraki and there are no overlapping subnets or anything like that.  Should I keep working with the ISP to resolve the issue?   Any inputs are appreciated.  ... View more
Labels:
  • Labels:
  • Auto VPN

Re: Very high proportion of CRC errors Meraki Switch

by Kyojuro in Switching
‎04-22-2022 02:21 PM
‎04-22-2022 02:21 PM
Turned out to be due to the SFP ... View more

Re: MX250 keeps dropping

by Kyojuro in Security / SD-WAN
‎04-22-2022 11:41 AM
‎04-22-2022 11:41 AM
Okay so I removed the direct cable and it was working fine for a couple days but now the dashboard just showing both MX unreachable even when everything is connected and working including client vpn, end point users, is something wrong with the dashboard on Meraki's side?  ... View more

very High CRC and packet Fragmentation

by Kyojuro in Switching
‎04-18-2022 01:50 PM
‎04-18-2022 01:50 PM
So our  MS225-24 is setup as a breakout switch with it up streamed to the ISP router providing 1G for us. When we first connected these together, we used a SFP-10G-T SFP module on the switch to connect (No sfp on ISP Router side) and saw our applications fail and show very High CRC and packet Fragmentation. However, when we got rid of the SFP and just connected on the 1G port of the Meraki Switch, everything seems fine. The Meraki  is set to auto negotiate and the ISP is telling  us their device is also set to auto negotiate  so I'm  not sure why it was failing. Any ideas?   ... View more
Labels:
  • Labels:
  • Other

Re: MX250 keeps dropping

by Kyojuro in Security / SD-WAN
‎04-11-2022 07:46 AM
‎04-11-2022 07:46 AM
So just remove the direct cabling and it should still function with the HA failover?  ... View more

Re: MX250 keeps dropping

by Kyojuro in Security / SD-WAN
‎04-10-2022 07:00 PM
‎04-10-2022 07:00 PM
Is the direct link still an issue even if the downstram switch ports do not include the VRRP VLAN? ... View more

MX250 keeps dropping

by Kyojuro in Security / SD-WAN
‎04-08-2022 02:51 PM
‎04-08-2022 02:51 PM
Hello,  I currently have an issue where both of our MX250s Primary and Secondary are becoming unreachable and dropping all connections for a couple of seconds at random times throughout the week. Both are on version 16.16 and they are connected via a direct connection with each other on an isolated vlan for VRRP.  Meraki performed a packet capture and was able to verify the MXs were working correctly.  Not sure at this point what the issue is.  I have tested pulling the power of the primary and it actually fails over correctly to the spare like it should but when the issue occurs, both mx250s go down at the same time.  I know it's not the WAN uplink connections for the MXs since they're on separate ISPs with separate public IPs.  Has anyone experienced anything similar?    Thank you.      ... View more

Threat Protection Allow list files

by Kyojuro in Security / SD-WAN
‎03-14-2022 11:41 AM
‎03-14-2022 11:41 AM
Hello,  Can anyone help me understand how to use this function in Meraki AMP? Meraki states "  For files, javascripts, and other objects that are not URLs, the MX appliance assigns a unique ID. You can see the blocked items in the Event log page. By entering the ID of the object you want to allow in the Allow list files section you can instruct the appliance to allow the detected signature, even if the URL is different." I'm looking in the Event Log Page of the dashboard for any kind of Object ID and I'm not seeing anything like that. Is there somewhere  else I should be looking? Seems like there aren't any tutorials  for this on the web either.    Thank you.    ... View more

Re: Block a port on WAN IP address on the MX in the firewall?

by Kyojuro in Security / SD-WAN
‎01-20-2022 10:22 AM
‎01-20-2022 10:22 AM
I need to block port 500 from all external IPs to the WAN IP address of the MX.  ... View more

Block a port on WAN IP address on the MX in the firewall?

by Kyojuro in Security / SD-WAN
‎01-20-2022 10:01 AM
‎01-20-2022 10:01 AM
Is there anyway to block a port for the WAN IP address on the MX in the firewall? Do I just put it in the layer 3? But isn't layer 3 only for LAN rules? Can I put in layer 7?   Thank you.      ... View more

SD WAN WarmSpare Setup Question

by Kyojuro in Security / SD-WAN
‎01-04-2022 12:00 PM
‎01-04-2022 12:00 PM
Hello,  I'm trying to setup a HA failover for our SDWAN following this guide.  https://www.willette.works/mx-warm-spare/   My question for doing this is, when the failover SD WAN is connected locally to the primary SDWAN for the first time, will the SD WAN go offline and bring down the network in anyway while it's syncing with the secondary?      ... View more

Group Policy Layer 3 Firewall Rule Comma Separated Ports?

by Kyojuro in Security / SD-WAN
‎12-27-2021 11:57 AM
‎12-27-2021 11:57 AM
I thought you could make a firewall rule with comma separated ports?  Or is this not possible in group policy?  Attached image is the error I'm getting. All of the ports in the comma separated port list are in the range of 1-65535.  ... View more

Re: Apache Log4j Vulnerubility

by Kyojuro in Security / SD-WAN
‎12-22-2021 12:49 PM
‎12-22-2021 12:49 PM
All SD WANS are MX68s.  All running same firmware (current version) Arctic Wolf.  ... View more

Apache Log4j Vulnerubility

by Kyojuro in Security / SD-WAN
‎12-22-2021 10:03 AM
‎12-22-2021 10:03 AM
Our SD WAN got flagged for  Apache Log4j 2.0.x < 2.15.0 RCE Vulnerability (HTTP, Log4Shell) - Active Check In our Security Monitor but none of the other SD WANs got this Vulnerability . Anyone familiar with this?    Thank you.    ... View more

Opening Ports for Static Route

by Kyojuro in Security / SD-WAN
‎12-13-2021 12:21 PM
‎12-13-2021 12:21 PM
We currently have static route in the MX250 in place at Addressing and VLANs. We want to setup firewall rules that specify which ports these routes can access both in bound and outbound. How can we set this up in Firewall? I know that Meraki is setup to deny all inbound connection unless allowed by outbound. Is it common practice  to deny all outbound connections in the firewall and only allow wanted outbound connections?  ... View more
Kudos from
User Count
TheAlchemist
TheAlchemist
1
View All
Kudos given to
User Count
MarcP
MarcP
1
View All
My Top Kudoed Posts
Subject Kudos Views

Re: With Traffic Shaping disabled, why would I see consistent traffic on Wa...

Security / SD-WAN
1 459
View All
Powered by Khoros
custom.footer.
  • Community Guidelines
  • Cisco Privacy
  • Khoros Privacy
  • Privacy Settings
  • Terms of Use
© 2023 Meraki