Message displayed on the Cisco Meraki Dashboard

book

Article ID: 171469

calendar_today

Updated On:

Products

Web Security Service - WSS

Issue/Introduction

You get a message on the Dashboard under a VPN tunnel 

Resolution

Devices Using the 'backup Cloud connection'

While devices will primarily connect to Dashboard using UDP port 7351 for their tunnel, they will attempt to use HTTP/HTTPS if unable to connect over port 7351. When devices are operating like this, a message will be displayed on the device's status page indicating that the 'Connection to the Cisco Meraki Cloud is using the backup Cloud connection.' If this is observed, please ensure that port 7351 is being allowed outbound through the firewall or security appliance traffic from the Cisco Meraki devices will pass through.

 

If unable to configure the recommended firewall

Devices Using the 'backup Cloud connection'

While devices will primarily connect to Dashboard using UDP port 7351 for their tunnel, they will attempt to use HTTP/HTTPS if unable to connect over port 7351. When devices are operating like this, a message will be displayed on the device's status page indicating that the 'Connection to the Cisco Meraki Cloud is using the backup Cloud connection.' If this is observed, please ensure that port 7351 is being allowed outbound through the firewall or security appliance traffic from the Cisco Meraki devices will pass through.

 

If unable to configure the recommended firewall settings for the backup cloud connection due to security constraints, please note that Cisco Meraki devices will continue to operate normally, but some features of the Cisco Meraki Dashboard may be slower to respond. This includes, but is not limited to:

  • Configuration updates
  • Live tools
  • Firmware upgrades


Note: This happens because IPSEC only accepts traffic from port 80 .443 and UDP 500
 

all settings for the backup cloud connection due to security constraints, please note that Cisco Meraki devices will continue to operate normally, but some features of the Cisco Meraki Dashboard may be slower to respond. This includes, but is not limited to:

  • Configuration updates
  • Live tools
  • Firmware upgrades


Note: This happens because IPSEC only accepts traffic from port 80 .443 and UDP 500