- About Pugmiester
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Pugmiester
Getting noticed
Member since May 9, 2018
Sunday
Community Record
25
Posts
5
Kudos
3
Solutions
Badges
3 weeks ago
When we quickly swapped in the boxes last night in place of the existing router, the master picked up the previous internet facing IP so as long as the working device does that I think we will be OK. It's clumsy but if it'll work for us then it will ave to do for now. As I mentioned in my reply to @PhilipDArh above, we should be able to get a secondary connection running for LAN4 so at least the spare MX has a permanent dashboard connection to pickup configuration changes.
... View more
3 weeks ago
Hi Philip, that's what I was thinking. There's a bit of a string and chewing gum option I have to get the LAN4 ports live on each box so at least the spare will be able to get a dashboard connection to keep the config live but I had a feeling the dual boxes might be an issue. I'll get the backup link live then see if we can do a quick swap out test and fail the primary just to see what happens. If it's clever enough to switch the traffic and goes back as the primary come back online then that might have to do.
... View more
3 weeks ago
Hi all, One of our sites we're deploying Meraki firewalls to threw in a curve ball after the hardware arrived on site. They use PPPoE for internet access. Our local guy has updated both of the MX's using the local status page to include the PPPoE settings and we've just tried a test switchover. The primary MX shows as online but the spare shows as unreachable. I'm presuming it's due to the PPPoE settings only permitting a single MX to dial out at once but if there's anyone with experience of this type of connection that could confirm one way or another I'd be grateful.
... View more
02-06-2019
06:22 AM
ha ha ha, yeah I think we have more airflow that the cat would allow so we should be OK.
... View more
02-06-2019
02:57 AM
Great stuff, thanks Marc.
... View more
02-06-2019
02:06 AM
That's what I was thinking Philip. It's a small site with a whopping 20Mbps internet feed and 30 staff so I can't imagine they are going to generate enough load to make a difference.
... View more
02-06-2019
01:48 AM
Hi all, This is a physical and environmental question more than anything fancy. We have a site with a small data rack and until their old hardware is stripped out to make space, we are looking to stand an MS-120-8 and 2 x MX64's on top of each other. The rack is in an A/C controlled room so there's a reasonable supply of cooling available. Is that likely to cause any issues with temperature or performance in the short term?
... View more
11-13-2018
07:35 AM
We're on shard n145 but everything seems to be back to normal. We've not had issues previously, I think this is the first issue with dashboard access in the last couple of years.
... View more
11-13-2018
03:39 AM
It seems like it's starting to recover but performance is affected badly.
... View more
11-13-2018
03:35 AM
Hi all, Is anyone else having issues reaching the Meraki Dashboard? It's started in the last couple of minutes and a logout/login is throwing up the same error.
... View more
10-31-2018
07:33 AM
1 Kudo
Hi @jdsilva Thanks for the pointer. I hadn't realised the best practice guide had been updated. I've stripped out the HA dedicated patch cable and together with dual connections from each MX to each switch, everything is looking rock solid. I think we have a winner.
... View more
10-31-2018
07:05 AM
1 Kudo
Both MX's are currently running on 13.33. I have a dedicated VRRP link between the boxes, not across the LAN, so I was expecting the primary to still be able to pass control to the secondary having detected a loss of its local LAN connection but that doesn't seem to happen. In the meantime, I've added a pair of additional patch cables from each MX to the opposing switch and let Spanning Tree sort out what's what which seems to have done the trick. That's a solution I can work with.
... View more
10-31-2018
06:18 AM
Hi all, I'm testing an install before we make it a blueprint for some of our smaller EU offices and I have an odd situation I can't seem to see a way to fix. I have a pair of MX64's in Warm spare mode. They're connected with a dedicated patch cable for HA and work as expected, the primary fails, the spare takes over. My issue is the LAN side. Each MX connects to it's own Meraki MS220-8P (We'll use larger switches on site) and then the two switches are linked by a trunk. All is happy until the switch the primary MX connects to fails (or I pull the LAN cable). If the LAN side of the Primary MX fails, it doesn't see this as a failure and therefore pass the primary role to the MX that still has LAN connectivity which then leaves all of the remaining clients on the live switch with no internet connectivity. Am I missing something really obvious?
... View more
07-06-2018
05:23 AM
1 Kudo
Thanks jdsilva, that was where I was heading. It's been a long week. :-( Last night we rolled back to our old firewalls and disconnected the MX's completely from the LAN to be certain we could regain a stable connection for work being completed remotely over the weekend. Not 10 minutes after I finished, one of the links dropped again proving that the MX's have noting to do with the problem. I never believed they did but it was the only change I'd made. I've a solution in place for now using the interface IP addresses in place of the HSRP ones so we're stable but lacking failover. The business is happy with stable for now. I'll close off this question though as we're now 100% certain it's not Meraki related. Thanks everyone for your help pointing me in the right direction.
... View more
07-05-2018
08:24 AM
Hi all, thanks for the quick replies. There's no sign of any issues with ARP entries when we have the connection failure but it's difficult to test as we're in the middle of the work day when we're seeing most of the failures and the business guys get a bit impatient. With that in mind, we've decided to roll back the changes and revert to our old firewalls this evening until we have time to investigate further. As soon as I have that complete, I'll get back with some more information to hopefully figure this out once and for all.
... View more
07-05-2018
03:24 AM
Hi all, bear with me, it's a bit of a long one. We have a pair of MX-250's in HA as Primary/Backup. They sit in two buildings, each with their own subnet and VLAN. Both subnets and VLANs are piped into both MX's across our site wide fibre link so they can work their magic with HA. They have been on the LAN for over 2 weeks now and on Monday evening they were swapped into place of our old firewalls, essentially shutting ports on the internet switch and opening the ones for the MX's. Since then, we've had a really weird random issue with two other routers onsite. They are a pair of third party managed Cisco routers, each with their own dedicated external circuit and an interface in each of the buildings VLAN's and they have been running as they are for over a year without issue. They are configured with HSRP for both VLAN's so our default gateways have a single route in each VLAN to drop traffic on them and they route it to our other offices over MPLS. Since Monday night, randomly, we loose the ability to reach the Cisco routers so we lose access to other office resources. The only fix I've found is to shut and open the port connecting the Cisco router to the LAN. There's nothing logged on either the switch or the router before the failures begin, all they show is the port state changing as I do it. The third party have been all over their routers and can't find a fault and I'm in the same boat with the switches they connect to. The only recent change was making the MX's our default route to the internet (not to the sites supported by the Cisco routers) on Monday night so I'm certain it's connected but I've been banging my head on this one since I made the MX's live on Monday evening and I'm just not getting anywhere, hopefully someone has seen it before and can nudge me in the right direction.
... View more
05-30-2018
02:26 AM
2 Kudos
We're in the same boat here too. We would love to get some Meraki hardware into our Moscow office but we're told it's currently not possible.
... View more
05-30-2018
01:40 AM
Thanks Philip, I'll take a look.
... View more
05-30-2018
12:34 AM
Hi all, Our new MX250's have arrived onsite and I'm working through the physical connections ready for installation. I was planning to use an Etherchannel between the MX and the Cisco 4500 but I understand the MX's don't support Etherchannel/Bonding. I don't need dual links for capacity, it's solely so we don't have a single point of failure in case one of the 4500 modules fails. What would you recommend to provide a secondary connection with a quick a failover as possible? Thanks, Martin
... View more
05-15-2018
12:51 AM
Thanks jwwork, There are a couple of areas out in the warehouse I've just remembered where we are relying on STP to manage redundant links, mainly because the switches are really low capacity with only a single Gig uplink so I couldn't build an Etherchannel with that and a 100Mbps link but thinking about it, the throughput is that low I could switch to a pair of 100Mbps links in Etherchannel and use the gig for a device connection and still have performance to spare, plus break the loop completely.
... View more
05-11-2018
06:04 AM
Thanks for the heads up. What we have currently is :- <FW> --- <Catalyst Core> --- <Catalyst Access> --- MR's and we'll be moving to :- <MX> --- <Catalyst core> --- <Catalys Access> --- <Meraki Switch> --- MR's Looks like a switch to mst may be the safer option then just to be safe.
... View more
05-11-2018
05:48 AM
Most, if not all, of the current switch links have migrated over to Etherchannel instead of relying on Spanning-Tree with redundant connections so I'm reasonably confident we are loop free (famous last words). The new switches will follow the same Etherchannel/port bonding route so that should mean we're OK. We seem to only have the option for 25.9 at the moment and haven't run into any issues but I'll keep an eye out for 25.11.
... View more
05-11-2018
05:22 AM
Thanks PhilipDAth. We're running rapid-pvst across the current infrastructure (around 60 access switches and 2x4500's) so would you recommend we switch to MST before adding the Meraki switches? The MX will become the default route to the internet so we should see the traffic flow but we will likely retain our existing core stack default gateway setup for now as there's a lot of LAN and WAN traffic that doesn't need to touch the MX, at least not initially. All of our MR's are running 25.9 with it being the latest stable release. Just a little twichy about switch to RC versions.
... View more
05-11-2018
01:03 AM
Hi all, we're currently running a mostly Cisco Catalyst switch network (4500 core, 2960x access) with Meraki MR's and will soon be moving to include MX firewall appliances to replace the existing hardware and MS switches as budget becomes available and older hardware is ready to replace. Are there any recommendations or pitfalls to avoid when mixing and matching the different technologies to minimise the pain?
... View more
05-11-2018
12:42 AM
Hi, Martin here from Manchester UK. A recent addition to the Meraki community and as of Wednesday the 9th, a Meraki CMNO (certificate's in the post). A network guy for the last 15+ years (mainly Cisco Catalyst) and I look after our current EU wide Meraki wifi install (30 sites, around 200 AP's), soon to be expanded to include firewalls and switches too.
... View more
My Accepted Solutions
| Subject | Views | Posted |
|---|---|---|
| 340 | 11-13-2018 07:35 AM | |
| 1582 | 10-31-2018 07:05 AM | |
| 453 | 07-06-2018 05:23 AM |
My Top Kudoed Posts
| Subject | Kudos | Views |
|---|---|---|
| 2 | 1499 | |
| 1 | 1576 | |
| 1 | 1582 | |
| 1 | 453 |
