Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi All,I got a design question. Can Meraki VMX be my primary Azure Gateway/Firewall ? Further details:Planning to have some applications services in Azure cloud (IAAS/PAAS) , those applications can be access via private link ( site to site IPSEC) or ...
Hi All,i am trying to find out if we can use MX as a radius server without confiruing an external radius device like nps. has anyone been across this ? and what are the requirements / model number..etc for MX ?If yes, can we also integrate it with AD...
Hi All,
I've just got assigned to a project where we have SD-Access with following components:
- DNA
- Border Routers ( acting as control nodes as well )
- Intermediate Routers ( I believe they are used to forward underlay traffic and not part of th...
Hi All,
I have an existing DC environment with ESXI. I will use some dummy IP in this post to make it easy to understand.
This ESXI got an IP Address 172.1.1.0/24 and it's gateway is R1 : 172.1.1.1
I got couple of VM's running on ESXI and sharing th...
Hi All,
I am working on a migration and upgrade for CISCO ISE nodes in distributed setup: i have 3 x primary CISCO ISE Nodes running on version 2.4 (PAN/PSN/MNT) and 3 x Secondary CISCO ISE Nodes (SAN/PSN/MNT) that we just migrated and used Version 3...
I am still struggling to find solution. I am looking for CISCO Documentation that states
1- how to connect 3rd party switches
2- how to remove SDA fabric and convert it to traditional architect. I see a lot of posts here and there saying that i sho...
I have just googled and it seems there is a post that says "yes". but it is not covering all of my questions
https://community.cisco.com/t5/software-defined-access-sd-access/non-sda-switch-connected-to-the-fabric-edge/td-p/4297464
Also, can you confi...
just an update , i think we were able to troubleshoot the issue and it was around DNS , the DNS policies had a more specific setup ( zone based) which could be only viewed via command line not GUI, so we were basically making changes to a default DNS...
We ensured that in WLC, under AAA Servers, there is only 1 x PSN configured. We could see the initial traffic hitting the correct PSN and the user was getting an authorization profile assigned to get redirected.
on the ACL for WLC, does the sequence...
Just an update; service provider did not provide us /29. What we did was to utilize the 2nd 4G uplink (MG21) so that MX1 gets two uplinks ( fiber + 4G) , and MX2 ends up with 1 uplink (4G). We made sure that both MX1/MX2 are connected to a LAN switch...
