- About Pugmiester
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Pugmiester
Getting noticed
Member since May 9, 2018
Tuesday
Community Record
33
Posts
6
Kudos
3
Solutions
Badges
04-17-2019
01:24 AM
Hi all. So, I logged a ticket with Meraki support and the upshot seems to be that the current mix of Meraki and Catalyst devices is preventing the network from being discovered correctly. I can understand that but I don't get why replacing Catalyst with Meraki hardware has made this particular area less visible to the topology view. Most odd. However, there's mention of LLDP which we don't currently run on the Catalyst devices so I think I'm going to enable it and see if that helps get a better picture of what's connected to what and I'll report back.
... View more
04-16-2019
08:03 AM
Hi @BrechtSchamp, that's great. Sounds like this shouldn't be a big a headache, just plenty of warning for the affected users and some hand holding to make sure the less technical staff (guest ambassadors) have an authentication app ready to go.
... View more
04-16-2019
07:59 AM
Hi @Cmiller, that's what I was hoping for. We have a reasonable number of guest ambassadors as we have 25+ networks with local ambassadors managing the guests so it's a decent sized update for them all but if it's a guided process it will make things a bit simpler.
... View more
04-16-2019
06:30 AM
Hi all, We are looking to tighten up the security on our existing Meraki organisation by enforcing all admins to have multifactor authentication enabled on their account. What we're not sure about is the impact of enforcing it after the accounts have been created. We have a number of full organisation admin accounts and all of those with any sort of write permissions have MFA enabled but there are accounts with either organisational read-only or guest ambassador roles that currently don't. If we throw the switch and enforce MFA under Organization > Settings > Security, does anyone know if that would effectively lock all of the non-MFA enabled users out completely or is there an automated process that relays those users to the MFA setup the first time they try to log back in? We're just trying to avoid a bunch of help desk calls if we can and an automated process would make that a lot simpler.
... View more
04-02-2019
12:33 AM
1 Kudo
Hi @BrechtSchamp, based on @PhilipDAth comment about the 24 hour timing, it'll roll over to that around 10:00 this morning so I'll see what it looks like later in the day and failing that I'll raise a ticket with support. Thanks all.
... View more
04-02-2019
12:31 AM
Hi @PhilipDAth, we made the changes on Friday afternoon so there should have been plenty of time but I didn't realise that I hadn't added VLAN1 to the trunk until I noticed the missing hardware yesterday morning so I'll see how things look later in the day.
... View more
04-01-2019
06:57 AM
Hi @ww, yes all of the hardware is in the same combined network. I'm unsure if LLDP was enabled on the old Catalyst switch, I would guess not as I don't recall enabling it but I'm puzzled by why the Meraki switches seem to not be seeing their Meraki neighbours in the end to end path.
... View more
04-01-2019
06:34 AM
Hi all, this has me puzzled. We have replaced an older model Cisco Catalyst switch with a Meraki MS210-24P but it's not visible on the topology, neither is the MR32 on the other side of it. Before we started, our topology looked like this :- MX-100 <> Catalyst 4500 (Our core) <> SFP fibre <> Catalyst <> MR32 The new setup looks like this :- MX-100 <> Catalyst 4500 (Our core) <> New MS225-48FP <> SFP fibre <> New MS210-24P <> MR32 None of the new hardware appears on the topology view, nor does the MR32. I must say I'm not 100% certain the MR32 was visible before the move but if I use the search on the topology view it lists 1 device found but it's not visible. We moved the fibre connection to the MS225 because we were burning up a 10Gbps SFP+ port on the core switch for a generally 10Mbps throughput connection. The links between all of the switches are trunks carrying native VLAN1 plus a couple of others in use on site. Could it simply be that the topology view isn't updated in realtime or maybe only after a switch restarts (VLAN1 was filtered off the trunk initially)?
... View more
03-01-2019
12:25 AM
When we quickly swapped in the boxes last night in place of the existing router, the master picked up the previous internet facing IP so as long as the working device does that I think we will be OK. It's clumsy but if it'll work for us then it will ave to do for now. As I mentioned in my reply to @PhilipDArh above, we should be able to get a secondary connection running for LAN4 so at least the spare MX has a permanent dashboard connection to pickup configuration changes.
... View more
03-01-2019
12:21 AM
Hi Philip, that's what I was thinking. There's a bit of a string and chewing gum option I have to get the LAN4 ports live on each box so at least the spare will be able to get a dashboard connection to keep the config live but I had a feeling the dual boxes might be an issue. I'll get the backup link live then see if we can do a quick swap out test and fail the primary just to see what happens. If it's clever enough to switch the traffic and goes back as the primary come back online then that might have to do.
... View more
02-28-2019
08:24 AM
Hi all, One of our sites we're deploying Meraki firewalls to threw in a curve ball after the hardware arrived on site. They use PPPoE for internet access. Our local guy has updated both of the MX's using the local status page to include the PPPoE settings and we've just tried a test switchover. The primary MX shows as online but the spare shows as unreachable. I'm presuming it's due to the PPPoE settings only permitting a single MX to dial out at once but if there's anyone with experience of this type of connection that could confirm one way or another I'd be grateful.
... View more
02-06-2019
06:22 AM
ha ha ha, yeah I think we have more airflow that the cat would allow so we should be OK.
... View more
02-06-2019
02:57 AM
Great stuff, thanks Marc.
... View more
02-06-2019
02:06 AM
That's what I was thinking Philip. It's a small site with a whopping 20Mbps internet feed and 30 staff so I can't imagine they are going to generate enough load to make a difference.
... View more
02-06-2019
01:48 AM
Hi all, This is a physical and environmental question more than anything fancy. We have a site with a small data rack and until their old hardware is stripped out to make space, we are looking to stand an MS-120-8 and 2 x MX64's on top of each other. The rack is in an A/C controlled room so there's a reasonable supply of cooling available. Is that likely to cause any issues with temperature or performance in the short term?
... View more
11-13-2018
07:35 AM
We're on shard n145 but everything seems to be back to normal. We've not had issues previously, I think this is the first issue with dashboard access in the last couple of years.
... View more
11-13-2018
03:39 AM
It seems like it's starting to recover but performance is affected badly.
... View more
11-13-2018
03:35 AM
Hi all, Is anyone else having issues reaching the Meraki Dashboard? It's started in the last couple of minutes and a logout/login is throwing up the same error.
... View more
10-31-2018
07:33 AM
1 Kudo
Hi @jdsilva Thanks for the pointer. I hadn't realised the best practice guide had been updated. I've stripped out the HA dedicated patch cable and together with dual connections from each MX to each switch, everything is looking rock solid. I think we have a winner.
... View more
10-31-2018
07:05 AM
1 Kudo
Both MX's are currently running on 13.33. I have a dedicated VRRP link between the boxes, not across the LAN, so I was expecting the primary to still be able to pass control to the secondary having detected a loss of its local LAN connection but that doesn't seem to happen. In the meantime, I've added a pair of additional patch cables from each MX to the opposing switch and let Spanning Tree sort out what's what which seems to have done the trick. That's a solution I can work with.
... View more
10-31-2018
06:18 AM
Hi all, I'm testing an install before we make it a blueprint for some of our smaller EU offices and I have an odd situation I can't seem to see a way to fix. I have a pair of MX64's in Warm spare mode. They're connected with a dedicated patch cable for HA and work as expected, the primary fails, the spare takes over. My issue is the LAN side. Each MX connects to it's own Meraki MS220-8P (We'll use larger switches on site) and then the two switches are linked by a trunk. All is happy until the switch the primary MX connects to fails (or I pull the LAN cable). If the LAN side of the Primary MX fails, it doesn't see this as a failure and therefore pass the primary role to the MX that still has LAN connectivity which then leaves all of the remaining clients on the live switch with no internet connectivity. Am I missing something really obvious?
... View more
07-06-2018
05:23 AM
1 Kudo
Thanks jdsilva, that was where I was heading. It's been a long week. :-( Last night we rolled back to our old firewalls and disconnected the MX's completely from the LAN to be certain we could regain a stable connection for work being completed remotely over the weekend. Not 10 minutes after I finished, one of the links dropped again proving that the MX's have noting to do with the problem. I never believed they did but it was the only change I'd made. I've a solution in place for now using the interface IP addresses in place of the HSRP ones so we're stable but lacking failover. The business is happy with stable for now. I'll close off this question though as we're now 100% certain it's not Meraki related. Thanks everyone for your help pointing me in the right direction.
... View more
07-05-2018
08:24 AM
Hi all, thanks for the quick replies. There's no sign of any issues with ARP entries when we have the connection failure but it's difficult to test as we're in the middle of the work day when we're seeing most of the failures and the business guys get a bit impatient. With that in mind, we've decided to roll back the changes and revert to our old firewalls this evening until we have time to investigate further. As soon as I have that complete, I'll get back with some more information to hopefully figure this out once and for all.
... View more
07-05-2018
03:24 AM
Hi all, bear with me, it's a bit of a long one. We have a pair of MX-250's in HA as Primary/Backup. They sit in two buildings, each with their own subnet and VLAN. Both subnets and VLANs are piped into both MX's across our site wide fibre link so they can work their magic with HA. They have been on the LAN for over 2 weeks now and on Monday evening they were swapped into place of our old firewalls, essentially shutting ports on the internet switch and opening the ones for the MX's. Since then, we've had a really weird random issue with two other routers onsite. They are a pair of third party managed Cisco routers, each with their own dedicated external circuit and an interface in each of the buildings VLAN's and they have been running as they are for over a year without issue. They are configured with HSRP for both VLAN's so our default gateways have a single route in each VLAN to drop traffic on them and they route it to our other offices over MPLS. Since Monday night, randomly, we loose the ability to reach the Cisco routers so we lose access to other office resources. The only fix I've found is to shut and open the port connecting the Cisco router to the LAN. There's nothing logged on either the switch or the router before the failures begin, all they show is the port state changing as I do it. The third party have been all over their routers and can't find a fault and I'm in the same boat with the switches they connect to. The only recent change was making the MX's our default route to the internet (not to the sites supported by the Cisco routers) on Monday night so I'm certain it's connected but I've been banging my head on this one since I made the MX's live on Monday evening and I'm just not getting anywhere, hopefully someone has seen it before and can nudge me in the right direction.
... View more
05-30-2018
02:26 AM
2 Kudos
We're in the same boat here too. We would love to get some Meraki hardware into our Moscow office but we're told it's currently not possible.
... View more
My Accepted Solutions
| Subject | Views | Posted |
|---|---|---|
| 410 | 11-13-2018 07:35 AM | |
| 1654 | 10-31-2018 07:05 AM | |
| 524 | 07-06-2018 05:23 AM |
My Top Kudoed Posts
| Subject | Kudos | Views |
|---|---|---|
| 2 | 1728 | |
| 1 | 148 | |
| 1 | 1648 | |
| 1 | 1654 | |
| 1 | 524 |
