Register or Sign in
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- About Kyojuro
Kyojuro
Here to help
Member since Dec 13, 2021
04-11-2023
Community Record
23
Posts
1
Kudos
0
Solutions
Badges
03-29-2023
08:58 AM
Hello, I'm just wondering if there is a way to block or allow only specific clients on to the Meraki Cisco Anyconnect VPN? Thank you.
... View more
Labels:
- Labels:
-
Client VPN
01-23-2023
11:06 AM
Hello, This isn't necessarily a Meraki MS post but a general networking question. I recently setup a network closet picture attached and while everything works perfectly, the cables look "ugly" due to it being stiff and twisting which doesnt look very good. Does anybody know a trick to straighten the cables out so they look better? Thank you.
... View more
Labels:
- Labels:
-
Other
08-29-2022
02:02 PM
Is there a way to change the Wifi password for multiple networks at the same time (for same SSID) We have over 20 Networks and was wondering if there was a faster way to change the Wifi password for the same SSID in each of those networks all at once. Thank you.
... View more
Labels:
- Labels:
-
SSID
08-26-2022
11:03 AM
1 Kudo
Do you have both load balancing and Active-Active Auto VPN turned off? Do you have any set flow preferences that's going out WAN 2?
... View more
08-04-2022
03:27 PM
Hello, We currently have a static route on the Meraki pointed at an IP address on the network. Is there any way we can have a client statically routed through another route to the same destination IP address for testing purposes? For ex. Static route set for for xxx.xxx.1.2 next hop to is through xxx.xxx.xxx.2 but for only one host I want a static route for xxx.xxx.1.2 next hop to is through xxx.xxx.xxx.3 I want to use source based default routes for this but it is by VLAN and not by individual IPs. Which means I cannot select a device that's within the same VLAN as other devices. Any ideas for this one?
... View more
08-03-2022
07:54 AM
To anyone who was interested in this one, the ISP actually had some routing issues on their side with another ISP's external IP addresses.
... View more
07-28-2022
02:48 PM
Have you tried applying the All Non-Meraki / Client VPN filter in the event logs? Seems like that's what Meraki recommends for Non Meraki peer VPN traffic.
... View more
07-28-2022
02:27 PM
I've had this issue in the past and it worked after I did a firmware upgrade to latest version. Is your MX on latest firmware?
... View more
07-28-2022
02:12 PM
Hello, Im having an issue with a new network setup that cannot connect to 5 site to site VPN networks but is able to connect to rest of the other networks (+10) Not sure what is special about the 5 as those networks only has connection issues with this new network as well and can connect to all of the other networks. Meraki support is stating that the new network ISP is blocking the 5 VPN IP addresses and the ISP is stating that the network firewall is blocking the 5 external IPs. I have captured packets where the new network MX is able to ping out to the 5 networks and the 5 networks receives the pings but when they reply back, nothing makes it back to the new MX. I have tried upgrading firmware to latest version, rebooting the MX multiple times it's just the 5 networks that does not connect. I have checked with Meraki and there are no overlapping subnets or anything like that. Should I keep working with the ISP to resolve the issue? Any inputs are appreciated.
... View more
Labels:
- Labels:
-
Auto VPN
04-22-2022
11:41 AM
Okay so I removed the direct cable and it was working fine for a couple days but now the dashboard just showing both MX unreachable even when everything is connected and working including client vpn, end point users, is something wrong with the dashboard on Meraki's side?
... View more
04-18-2022
01:50 PM
So our MS225-24 is setup as a breakout switch with it up streamed to the ISP router providing 1G for us. When we first connected these together, we used a SFP-10G-T SFP module on the switch to connect (No sfp on ISP Router side) and saw our applications fail and show very High CRC and packet Fragmentation. However, when we got rid of the SFP and just connected on the 1G port of the Meraki Switch, everything seems fine. The Meraki is set to auto negotiate and the ISP is telling us their device is also set to auto negotiate so I'm not sure why it was failing. Any ideas?
... View more
Labels:
- Labels:
-
Other
04-11-2022
07:46 AM
So just remove the direct cabling and it should still function with the HA failover?
... View more
04-10-2022
07:00 PM
Is the direct link still an issue even if the downstram switch ports do not include the VRRP VLAN?
... View more
04-08-2022
02:51 PM
Hello, I currently have an issue where both of our MX250s Primary and Secondary are becoming unreachable and dropping all connections for a couple of seconds at random times throughout the week. Both are on version 16.16 and they are connected via a direct connection with each other on an isolated vlan for VRRP. Meraki performed a packet capture and was able to verify the MXs were working correctly. Not sure at this point what the issue is. I have tested pulling the power of the primary and it actually fails over correctly to the spare like it should but when the issue occurs, both mx250s go down at the same time. I know it's not the WAN uplink connections for the MXs since they're on separate ISPs with separate public IPs. Has anyone experienced anything similar? Thank you.
... View more
03-14-2022
11:41 AM
Hello, Can anyone help me understand how to use this function in Meraki AMP? Meraki states " For files, javascripts, and other objects that are not URLs, the MX appliance assigns a unique ID. You can see the blocked items in the Event log page. By entering the ID of the object you want to allow in the Allow list files section you can instruct the appliance to allow the detected signature, even if the URL is different." I'm looking in the Event Log Page of the dashboard for any kind of Object ID and I'm not seeing anything like that. Is there somewhere else I should be looking? Seems like there aren't any tutorials for this on the web either. Thank you.
... View more
01-20-2022
10:22 AM
I need to block port 500 from all external IPs to the WAN IP address of the MX.
... View more
01-20-2022
10:01 AM
Is there anyway to block a port for the WAN IP address on the MX in the firewall? Do I just put it in the layer 3? But isn't layer 3 only for LAN rules? Can I put in layer 7? Thank you.
... View more
01-04-2022
12:00 PM
Hello, I'm trying to setup a HA failover for our SDWAN following this guide. https://www.willette.works/mx-warm-spare/ My question for doing this is, when the failover SD WAN is connected locally to the primary SDWAN for the first time, will the SD WAN go offline and bring down the network in anyway while it's syncing with the secondary?
... View more
12-27-2021
11:57 AM
I thought you could make a firewall rule with comma separated ports? Or is this not possible in group policy? Attached image is the error I'm getting. All of the ports in the comma separated port list are in the range of 1-65535.
... View more
12-22-2021
12:49 PM
All SD WANS are MX68s. All running same firmware (current version) Arctic Wolf.
... View more
12-22-2021
10:03 AM
Our SD WAN got flagged for Apache Log4j 2.0.x < 2.15.0 RCE Vulnerability (HTTP, Log4Shell) - Active Check In our Security Monitor but none of the other SD WANs got this Vulnerability. Anyone familiar with this? Thank you.
... View more
12-13-2021
12:21 PM
We currently have static route in the MX250 in place at Addressing and VLANs. We want to setup firewall rules that specify which ports these routes can access both in bound and outbound. How can we set this up in Firewall? I know that Meraki is setup to deny all inbound connection unless allowed by outbound. Is it common practice to deny all outbound connections in the firewall and only allow wanted outbound connections?
... View more
My Top Kudoed Posts
| Subject | Kudos | Views |
|---|---|---|
| 1 | 795 |
