Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
About MarcW
Community Record
16
Posts
2
Kudos
0
Solutions
Badges
Oct 10 2024
1:21 PM
Waiting for local admin to run pen test to see if I blocked it correctly and successfully.
... View more
Oct 3 2024
12:32 PM
I cannot solve how to block telnet on a subnet range. My assumption is a layer 7 rule, but that's all I got. How do I block telnet on a MX75?
... View more
Labels:
- Labels:
-
Firewall
Sep 12 2024
9:39 AM
Firmware updated - no joy Continuous ping - no joy At this point, with the same behavior across 8+ site to site connections to a single destination, dropping the same way (and possibly same happening to other businesses) and needing reboots every other day or so, I am going to conclude it is them, not us. Thanks!!
... View more
Sep 10 2024
8:59 AM
4 of the 5 are due for the update. Coordinating that change with my local admin as we speak. What we saw were UPLINK notices almost daily for a mix of MXs. When I started looking for events, there were no fails. When I called the local admin, he said he'd been using the reboot as a workaround to address the issue. I was relieved that the MXs weren't "failing" several times a week - lol - but I had to then change my approach after identifying the real issue. After I update the firmware, we'll see if there are any latency/ packet drop accommodating settings to implement.
... View more
Sep 10 2024
8:48 AM
2 Kudos
🙂 if only they were our direct client.
... View more
Sep 9 2024
2:39 PM
I have 10 MX's that all talk to the same remote device. Many mornings, I will lose some of my site to site VPN connections to the non-Meraki peer. What can I change/ extend such that the MX's will keep trying longer to maintain the connection even if it is the remote device dropping it? Usually, a power cycle on either end reestablishes the connection.
... View more
Jul 3 2024
3:47 PM
My install is next week, so unless there's a time limit, I am going to keep this open.
... View more
Jul 3 2024
3:11 PM
I will look into this. I may have a completely different ISP setup when we move to the actual location and this will change how I can offer IP's to the switch and MX's.
... View more
Jul 2 2024
10:21 AM
I chose switching since this is where we are seeing it. We have 2 ISP's. They both hit the 8 port switch which then hits each of the FW's (primary and spare). If we fail ISP #1, the network stays up, but the switch reports as down. How do I make the switch follow the other ISP as the primary?
... View more
Apr 16 2024
4:41 PM
I tried to make the subject all the key details. I have a successful MX85 to TZ VPN connection on my primary ISP. The HA failover VPN works because I set up a VIP for the redundant MX85's. However, when I fail test the ISP, the internet is accessible, but the tunnels never re-establish over the VPN. I have the 2nd IPSEC on the other end set to what becomes the new Public IP on the MX85 backup. I waited a good 10-15 minutes to see if the tunnel would ever re-connect. No joy. I am sure there is some fundamental step I am missing, but it eludes me. Reading is fundamental, but apparently firewalls are not.
... View more
Apr 9 2024
9:12 AM
I have a client that wants to use SFTP. I have an MX85. They want to send and receive data. I have an IP that I want to allow. What entries are needed to configure this? I am guessing I start under firewall. After that, looking to learn.
... View more
Labels:
- Labels:
-
Firewall
Mar 22 2024
12:28 PM
Thanks but no. Went to Uplink. Edited spare to use virtual. Same IP range but different that anything already set. Was the Public IP supposed to change to match the new VIP set? After setting virtual, the public never changed and my other firewall never re-established the tunnel. My failover then kicked in shortly after for my secondary IP source.
... View more
Mar 19 2024
1:32 PM
I have HA Merakis VPN'd to a SonicWall (changing this as soon as possible). I have 2 ISPs connected to the Meraki. During testing, when I swap from HA1 to HA2, HA2 offers a different IP than HA1. The SonicWall VPN is configured for the HA1 IP address. Also, the secondary IP on the SonicWall is set to connect with the secondary IP from the Meraki (ISP failover). If I set both HA1 and HA2 to the same IP, I get a conflict. How do I overcome this?
... View more
Labels:
- Labels:
-
3rd Party VPN
-
Auto VPN
-
Firewall
My Top Kudoed Posts
| Subject | Kudos | Views |
|---|---|---|
| 2 | 678 |
© 2024 Cisco Systems, Inc.
