NOTE (6-7-22): Please download the flows.json file again if you did prior to 10AM June 7th. The original one was not correct and will possibly break your node-red install. Thanks to Rohan Karamandi for catching it for me. NOTE (6-9-22): Thanks to the help of Rohan Karamandi, the flows have been updated to now create… Continue reading Meraki MT, MQTT, Node-Red & Home Assistant Auto Discovery
It has been a while since I have added much to my blog. I would like to happily blame my role within Cisco Systems for this. I moved into product management about 2 years ago and have found it difficult to write on my own AND for Cisco at the same time. While I have… Continue reading Whoa.. where has the time gone?
I recently decided to try to learn how to write python a little bit. I'm still not very good at it, however I did create something recently that I feel should be shared! Meraki local status pages can provide some very useful information for troubleshooting, however having to browse to ap.meraki.com/switch.meraki.com/wired.meraki.com is not always desirable,… Continue reading Wifi and Meraki Widgets for Mac and Windows
Disclaimer: It is a highly recommended practice to employ a system of peer review for any changes you make that effect data plane traffic. This practice is especially important on systems managed via CLI. CLI is not always consistent between software versions or device types. Reviewing documentation and getting a second set of eyes always… Continue reading MX Dual VPN Hub OSPF to EIGRP Redistribution
If you need to brush up on the RADIUS process, please read my previous post: Following the 802.1X AAA process with Packet Captures Everyone talks about it, yet I rarely meet folks that really understand what CoA (Change of Authorization) means for RADIUS authentication and client access. I recently spent a few hours troubleshooting RADIUS… Continue reading Deconstructing the RADIUS CoA process
If you haven't noticed, I've taken a break from releasing any new material for the blog. After achieving the CWNE certification and my wife and I having our 3rd child it felt like a good time to relax. Good news is I am going to get back at it. You may see a little change… Continue reading 2018! What’s next?
This is just a quick one. I recently needed to filter out a couple packet captures of unneeded frames/packets for some training material. I had unfortunately captured a crap ton of data though and really didn't want to post the whole 20M pcap file. I ran across the wireshark function called "editcap". There is a… Continue reading Using editcap to prune a packet capture
EDIT: After chatting with David Westcott (@davidwestcott) I have made a few additions to this post. He has graciously asked that I add a little more details including the packet captures so everyone can follow along. This was a great idea, so please enjoy! 802.1X is typically the first step in one of the more… Continue reading Following the 802.1X AAA process with Packet Captures
**This video builds on top of the previous video of BYOD with Device Registration and Native Supplicant Provisioning. So please be sure to watch it for configuring the certificate templates and some of the SSID configuration. ** In this video we configure ISE and wireless with a single SSID for WPA2-Enterprise to perform device registration and… Continue reading Single SSID BYOD Onboarding
Aside from standard radius authentication and guest access, ISE is also useful for secure BYOD access. In this video I walk through building an onboarding SSID and Secure SSID in dashboard. Then in ISE we configure the guest portal, certificate template, native supplicant provisioning profile, and rule sets to put it all in play. Once… Continue reading BYOD with Device Registration and Native Supplicant Provisioning