+ Post New Thread
Results 1 to 9 of 9
Internet Related/Filtering/Firewall Thread, Meraki via Smoothwall Express 3.0 in Technical; Hi, We are a secondary school and are going ahead with meraki wireless solution ,we are looking to give student ...
  1. #1

    Join Date
    Oct 2010
    Posts
    3
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Red face Meraki via Smoothwall Express 3.0

    Hi,
    We are a secondary school and are going ahead with meraki wireless solution ,we are looking to give student guest access to the wireless network, we have RM Smartcache proxy on site, as on the meraki there is now option to point it through our smartcache proxy, from what i have searched around , our option is smoothwall express, i have installed smoothwall on one of the VM hosts , and that's about it,
    i have no idea how to setup the transparent proxy so that meraki would go through to internet via the smoothwall, ( i will be able to get a standalone box for the smoothwall)
    any help with the setup would be really appreciated

    thanks

  2. #2

    Join Date
    Oct 2010
    Posts
    3
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    any ideas ?

  3. #3

    AngryTechnician's Avatar
    Join Date
    Oct 2008
    Posts
    3,730
    Thank Post
    698
    Thanked 1,214 Times in 761 Posts
    Rep Power
    395
    First you need to set up the Smoothwall Express to work in transparent mode via the config pages, then you need to set the green interface IP of the Smoothwall as the default gateway on every device you want to go through it. If you're just sending the Meraki through it, you only need to change the default gateway for the APs and can leave the rest of your network alone.

    My advice would be to make DHCP reservations for each AP and then configure the default gateway on each reservation. It's DHCP option 003 (labelled Router on Windows DHCP servers). If you are using VLANs you can also do it on the DHCP scope for that VLAN.

  4. #4

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,821
    Thank Post
    272
    Thanked 1,140 Times in 1,036 Posts
    Rep Power
    351
    Meraki Wireless does not communicate to the cloud controllers via HTTP or HTTPS. You need to have additional specific ports opened outbound to specific addresses.

    The ports are available here but may vary depending on your setup. https://dashboard.meraki.com/manage/..._configuration You will be required to login using your cloud controller account.

    With regards to directing the students - If you setup the Meraki SSID using NAt mode it will use its own DHCP and seperate them from the LAN network. Under the firewall options you need to setup a policy to Deny access from the wireless clients to the Local LAN.


    You can then leave the access points on DHCP on the normal network and also create an SSID for school devices which are completely seperate from the network without the need to Vlans (Meraki AP only allows clients from the open SSID to the default gateway no where else).

    You can also traffic shape and limit the bandwidith the students can use to the Internet so they can't waste all the internet feed.
    Last edited by glennda; 28th August 2012 at 03:13 PM.

  5. #5

    AngryTechnician's Avatar
    Join Date
    Oct 2008
    Posts
    3,730
    Thank Post
    698
    Thanked 1,214 Times in 761 Posts
    Rep Power
    395
    Quote Originally Posted by glennda View Post
    Meraki Wireless does not communicate to the cloud controllers via HTTP or HTTPS.
    That is the exact opposite of what a Meraki engineer told me. It uses other ports as well, but it does use port 80 and 443 as referenced on the document you linked - what is it using them for if not HTTP and HTTPS?

  6. #6

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,821
    Thank Post
    272
    Thanked 1,140 Times in 1,036 Posts
    Rep Power
    351
    Quote Originally Posted by AngryTechnician View Post
    That is the exact opposite of what a Meraki engineer told me. It uses other ports as well, but it does use port 80 and 443 as referenced on the document you linked - what is it using them for if not HTTP and HTTPS?
    Sorry - I meant does not communicate only via HTTP and HTTPS - my mistake. It does use 80 and 443 as well others mentioned.

  7. #7
    coulter's Avatar
    Join Date
    Nov 2007
    Posts
    6
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Adding onto this thread, does anyone have smoothwall (Guardian 3) working with Meraki AP's for Guest/Staff/Student access?

    I've setup an SSID for guests in NAT mode and configured a splash page. However the internet was working for around 1 hour but then it requires proxy access. Smoothwall dialed in and configured a transparent proxy but this now doesn't give the guest user the 'Splash Page' nor does any traffic shaping, firewire configuration work on the device.

    In a nutshell, the internet and some apps work fine but no Meraki config we have setup seem to work on this.

    Anyone shed some light into what my problem could be, Smoothwall are taking too long to get back to me.

    Cheers in advanced!

  8. #8

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,821
    Thank Post
    272
    Thanked 1,140 Times in 1,036 Posts
    Rep Power
    351
    So are you trying to use the Meraki Splash page?

  9. #9
    coulter's Avatar
    Join Date
    Nov 2007
    Posts
    6
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Yes we are especially for guests/visitors onto our network



SHARE:
+ Post New Thread

Similar Threads

  1. No Internet via Smoothwall express 3 and port 8000
    By networkingNut in forum Internet Related/Filtering/Firewall
    Replies: 1
    Last Post: 23rd June 2010, 10:43 PM
  2. Smoothwall Express Question
    By FN-GM in forum Wireless Networks
    Replies: 14
    Last Post: 13th September 2008, 07:36 PM
  3. Smoothwall Express Error
    By netadmin in forum *nix
    Replies: 8
    Last Post: 9th October 2007, 08:44 AM
  4. Anyone recommend Smoothwall Express?
    By OverWorked in forum *nix
    Replies: 15
    Last Post: 26th January 2006, 12:37 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •