Dashboard Alerts - Configuration Issues

Last updated
Save as PDF

Overview

These are the "Configuration Issues" alerts, their triggers, and troubleshooting steps indicated by the alerts. Please refer to network alert hub documentation to learn more.

Misconfigured DNS

Triggers

Meraki devices rely on DNS to resolve dashboard URLs. If a device reports issues with its DNS configuration, typically the device is not receiving responses to DNS requests.

Troubleshooting Steps

To find the source of the issue, check these:

Firewall rules blocking traffic to or from the DNS servers being used or traffic to UDP port 53
Routing traffic to or from the DNS servers
Invalid responses back from the DNS server
- Take a packet capture on an upstream device to see what traffic the device is sending and receiving
  - Filtering for the IP address or MAC address of the device and downloading the .pcap file is recommended for larger networks

If there are no firewall rules blocking DNS traffic and there aren't issues with routing traffic, try working around the issue by changing the DNS servers to a working public resolver on the DHCP server. Have the Meraki devices request another IP or set the IP manually, and set the DNS servers to a known working public resolver.

Uplink IP address in conflict with another device

Triggers

This means that another device in the network is also using the same IP address as the Meraki device.

Troubleshooting Steps

Resolving this problem means making sure all devices have unique IP addresses in a network. The Network-wide > clients list may help pinpoint the duplicate IP addresses in use:

Open the clients by navigating to the client page Network-wide > clients.
Find one that has a matching IP address to the device showing the alert.

Both devices, the device showing the alert and the other device using the same IP address, will struggle to reach the internet until this problem is resolved.

Bad IP assignment configuration

Triggers

This alert means a bad static IP or an incorrect VLAN tag with DHCP is being assigned to the Meraki device. Typically, network hardware will simply not work if you assign a bad IP address to it. Meraki devices, however, will automatically switch back to DHCP (automatic IP assignment) so that it can check in to the cloud and alert you about the problem if at all possible.

Troubleshooting Steps

The device has had a working static IP, make sure the IP address is still valid.
A typo or otherwise incorrect value while assigning a static IP.
The wrong VLAN tag is used for DHCP.
Switch to DHCP - The error message can only be displayed if the Meraki device has found another working IP address. By switching the IP assignment to DHCP instead of static (only specify a VLAN tag if you know what it should be), the device will keep using the current addressing and the error will go away over time.

Device(s) VLAN mismatch

Triggers

This alert is triggered if there is a management VLAN mismatch. Management VLAN mismatch alert occurs when there is a mismatch between operational, configured, and global management VLAN ID. This alert only applies to Meraki Switches.

Troubleshooting Steps

Make sure the device is not using a VLAN different from what is configured for its management interface.
Make sure the device management VLAN is not configured with a different VLAN from what is configured under switch > switch settings page.

Port(s) VLAN mismatch

Triggers

This feature utilizes CDP and LLDP packets from the past 3 hours to determine which switch ports are connected. If any two connected switch ports belong to Meraki switches in the same dashboard organization, the switch port VLAN configurations are compared.

Usually, a VLAN mismatch occurs after connecting a not pre-configured switch to the existing Meraki switch infrastructure or when a network administrator changes the port VLAN settings. If any mismatch is found in native, allowed or access VLANs, both switches will display device-level alerts in the dashboard. The switches will continue displaying the alert until the VLAN mismatch is resolved. But the alert hub will display only 1 alert for VLAN mismatch between 2 switches.

Currently, VLAN mismatch detection is supported on Meraki switches in the same organization. VLAN mismatch detection for other Meraki devices (MRs, MXs, etc.) and non-Meraki devices is not supported.

Guided Troubleshooting Flow

VLAN mismatch troubleshooting flow reduces time to resolution for our customers by easing manual tasks, simplifying the configuration process, and dynamically detecting errors.

Easing Manual Tasks

Guided VLAN mismatch troubleshooting flow displays switches current configuration and allows administrators to fix the issue from the troubleshooting panel without needing to navigate to different pages on the dashboard.

Simplifying the Configuration Process

This feature allows configuring all the settings on the alert hub and in some cases, the feature also displays suggested configurations derived from the configuration of the two switches alerting on VLAN mismatch. And users can apply these suggested settings with a single click on “Accept suggestion” button.

Suggested configurations account for safety and security both at the same time to make sure the suggested configuration does not cause any disruption for connected devices after applying. Please make sure to carefully review the suggestions and make sure it meets your organization’s security requirements.

Dynamic Error Detection

The feature auto-detects and warns users if the new configuration is incorrect before saving the new configuration on the widget which makes issue resolution more intuitive.

Note:

This feature will soon be available as public BETA, so no additional action is needed to enable the feature.
Support cannot enable this feature for customers. As we are doing a phased rollout of this feature, it will take some time to be available for everyone. An administrator should see this feature in the alert hub once available and if VLAN mismatch exists in the network. We will send out a dashboard announcement once the feature is available for everyone, so please stay tuned.
This feature is in BETA so to report any issues please use the “Give feedback about this alert” located inside the troubleshooting side panel.

Troubleshooting Steps

Make sure both ports allow the same VLANs. Please refer to this documentation to learn more about how to correct VLAN mismatch error.

Outdated/unreachable configuration

Triggers

This alert is shown when a configuration change is made in the dashboard, but the Meraki device can't download that change.

Troubleshooting Steps

Before contacting support, there are a few things to try to resolve this error:

Give the alert at least 5 minutes to go away naturally. In this time, check to see if any changes to the network are taking hold. For example, change the password on a wireless network and see if a phone can associate with the new password.
Try rebooting the device. In some cases this can resolve a configuration fetch issue.
If possible, try a different connection to the internet to rule out an upstream network problem.

If the above fails, open a support case for further assistance.

Regulatory domain mismatch

Triggers

Access points have their regulatory body set when they are ordered. As an example, an AP purchased in the US will have the regulatory domain of the Federal Communications Commission (FCC), dictating which channels can be used on the device.

Troubleshooting Steps

Be sure the public IP and the order region of the access point match. If the management traffic is using a VPN to another country, try avoiding this to see if the problem is resolved as a test.
If the above options are not possible, please contact support to begin an investigation of the next steps.

Country/region mismatch

Please refer to this documentation for more information how this alert is triggered and how to resolve the issue.