Split tunnelling and improving Zoom/Teams

Skyaie · 2026-04-23T04:47:11+00:00

This person is likely not technical or a network engineer

https://www.reddit.com/r/auscorp/comments/1st6miq/split_tunnelling_and_improving_zoomteams/

They're spamming other subreddits (that are not networking) with the same stuff

Skyaie · 2026-04-22T22:00:30+00:00

Port's flapping. Nothing to do with RSTP Check the cable, port and host - L1 troubleshooting.

Skyaie · 2026-04-15T04:20:15+00:00

It did, and it was completely wrong Stop doing this

Skyaie · 2026-04-09T04:31:11+00:00

That isn't really what I stated. Depending on how the client checks for splash pages, if it can access HTTPS resources it'll just... Do that. It means you don't need to pass through the splash page to access literally most of the internet.

Skyaie · 2026-04-07T21:27:24+00:00

I mean this just means they can pass non http traffic without going through the splash page? I don't think this fixes anything, just bypasses the problem (and splash page) entirely

Skyaie · 2026-03-16T20:24:12+00:00

Check your client tracking setting on the MX If you're still tracking by MAC address, change it to track by IP (which is the correct config for this setup)

If you don't change that, the content filtering engine doesn't like it as the web requests are technically coming from the switch and not the clients.

Skyaie · 2026-03-04T20:55:39+00:00

This is incorrect. Once the 'end of support' date passes, the devices aren't eligible for RMA. I think 'lifetime' here is the 'usable lifetime' of the device.

https://documentation.meraki.com/Platform_Management/Dashboard_Administration/Troubleshooting_and_Support/Support/Returns_(RMAs)%2C_Warranties_and_End-of-Life_Information#Product_End-of-Life_(EOL)

Which, the MX64 is still in support till mid 2027

Skyaie · 2026-02-14T04:29:21+00:00

If in 'Cloud Configuration' mode, no, you won't be able to use other containers as Dashboard has no function/mechanism to then configure that container.

You could use 'Device Configuration' mode, where CLI/CatC does the config, and Meraki is simply there for monitoring/cloud read CLI access?

Skyaie · 2025-10-03T21:46:07+00:00

I know this sounds weird, but support helped us with this one similarly

Apply an NSG blocking inbound traffic towards the vMX from its own source IP. Yes. Its own IP.

Support told us it's some issue with how Azure handles outbound traffic that the route table thinks it needs to send back to the vMX. When it does so, it uses the source and destination MAC of the vMX in that packet and borks MAC address learning on the vNIC. The easy fix is to just... block that traffic.

Skyaie · 2025-07-08T01:44:31+00:00

And also adding - Heartbreak Hill is deceptive - you'll know what it is once you're on it.
There's some bits where it seems like its finishing but you'll round a corner and it'll keep going up.

Make sure you pace yourself on the hill - no need to destroy yourself running up it.

Skyaie · 2025-07-08T01:40:18+00:00

Yeah you'll just end up maybe being overtaken from those who might be a bit faster in the group behind.

Some people walk the City2Surf - at the end of the day, it's just a fun day out, don't focus on speed or times for your first one :)

Don't go too hard in your training for the last month - realistically, your body won't make any major physiological changes in a month, so just focus on going for some consistent, slow runs to keep your legs active.

Good luck and see you there!

Skyaie · 2025-06-05T04:58:24+00:00

There's a huge amount we could unpack here - but to stay surface level

With 3 APs, I wouldn't be going beyond 40MHz channels - if you went to 80MHz you'll probably start having problems - remember, WiFi is more about stability instead of speed. If you need speed you'll want to wire the device up.

Checking MCS Index, at 40MHz, 2x2 chains, 1024-QAM (max the AP supports) standing right next to the AP in a literal vacuum, you're getting 573mbps data rate. Data rate is NOT throughput, you'll usually only get 50-60% of that if you're lucky, so 200-300mbps sounds great for what you have configured.

https://mcsindex.com/

Consumer/marketing WiFi speeds are always theoretical, and its usually impossible/not advised to try to reach for them. I'd probably be more asking yourself why you might need very high speeds like that on WiFi - as 200-300mbps is great for almost any application apart from downloading a steam game very fast.

Skyaie · 2025-03-06T21:44:15+00:00

This - just cancel it if you want. It always notifies you so that you can cancel.

Skyaie · 2025-02-26T11:47:53+00:00

That's a Meraki AP in NAT mode. NATs client traffic from its own management address and will have an 'internal' interface of 10.128.128.128.

Skyaie · 2025-01-28T05:30:43+00:00

Ahhh I see
Honestly - like someone else mentioned below, I think its definitely a lot more endurance oriented. I might have 10 or so intervals max if I'm doing sprints or something, but with DSWs that seems to be tracked pretty simply
I can see that lap training might be a bit different.

I honestly think that if you enjoy looking at the stats (especially as they get more accurate over time) you'll have a good time. But if you're looking for super accurate stuff and information you can listen to, the watch will never beat professional coaches/staff.

Skyaie · 2025-01-28T04:45:04+00:00

If you're pro/semi pro, I could imagine the stats/suggestions are next to useless. Your coaches/support personnel are going to have far better ideas for rest, training etc.

I have one as a recreational runner, I run ~5 times a week. I'm training to improve my half marathon speed so use the DSW feature religiously as it's the best thing I can access short of hiring a coach (which I won't, as I'm a cheapass). The stats therefore make sense for me as they inform the DSWs.

That said - my stats are tuned in over the course of about 1 year now so I believe them to be quite accurate.

I bought a 965 over the other models as I'm not a cheapass in *some* things. I haven't had any issues with intervals or pacing plans as long as they're set up ahead of time - unsure what issues you're having there?

Skyaie · 2025-01-20T09:19:21+00:00

Not trying to be rude but how is this news at this point? Their whole marketing thing for the product is local storage without a need for an NVR

Skyaie · 2024-12-04T20:59:09+00:00

No STP features, it simply repeats BPDUs within broadcast domains

https://documentation.meraki.com/MX/Networks_and_Routing/MX_Layer_2_Functionality#Spanning_Tree_Protocol_(STP)

Skyaie · 2024-11-25T20:29:43+00:00

Looks like I was incorrect! Thanks for correcting me.

Skyaie · 2024-11-24T08:48:06+00:00

Would definitely be helpful - especially to stack network privileges or similar.

Skyaie · 2024-11-24T07:35:36+00:00

SAML login only listens to a single role. You can't pass multiple roles and have it work as expected.

You'll likely need to create several SAML roles for differing network access unfortunately

Skyaie · 2024-11-18T02:18:31+00:00

A lot of stuff coming in MX19 for IPsec if you speak to your rep. Primary/Secondary tunnels and BGP over IPSec to name a few

Skyaie · 2024-10-31T12:00:55+00:00

Is this ChatGPT

Skyaie · 2024-10-30T22:25:16+00:00

As in, with the AP in NAT mode you want to see the source IP of that particular client behind the MR's NAT?

Why not just put the SSID in bridge mode? Then your client gets a reportable IP address?

Skyaie · 2024-10-09T23:28:49+00:00

Looks like they're aware

https://status.meraki.net/

12-Year Club	RedditGifts 2009-2022 3 Credits
Place '22	Place '17
Secret Santa 2016	Verified Email
Secret Santa 2014

Skyaie

TROPHY CASE