Unable to receive SNMP traps from Meraki

MElefth

Long story short: Meraki only allows you to receive SNMP traps over Internet and the source IP will be from the below ranges

1. 209.206.48.0/20
2. 216.157.128.0/20
3. 158.115.128.0/19

That's a problem because Orion drops traps from nodes it's not monitoring and as you can understand, adding like 16k addresses as external nodes is not an option.

I contacted Meraki support and they basically told me that that's how they do it and I can't make it so that traps are sent by the actual devices themselves.

I then contacted SW support and they told me to enable the option to allow traps and logs from unmonitored nodes. Problem is that I tried that and it wasn't working. After some back and forth with support they then told me that feature is actually deprecated and needs to be removed because it's not working with the new log monitoring component of Orion.

So now I'm just left extremely disappointed in both Orion and Meraki. If I cold just assign my "Meraki Orchestrator" external node those 3 ranges, that would be the end of it but support told me it's not possible.

Short of deploying a dedicated VM for receiving traps from Meraki Cloud and forwarding them internally to Orion, is there any other solution I could attempt? Anyone else here with Meraki equipment that managed to bypass this limitation?

tmn_m

We're in the same boat, I haven't found a work around that is acceptable either.    I'm not adding thousands of nodes to monitor, and I'm not going to build a dmz vm poller just for traps so out of luck at the moment.  Makes no sense why we can't configure everything to use the mgmt interface like every other vendor does.