Meraki

Community

L3 firewall rules finally available - ***happy***

Hoamboy
Getting noticed
‎Jun 13 2023 10:44 AM
‎Jun 13 2023 10:44 AM

L3 firewall rules finally available - ***happy***

As of today with iOS app version 2.91.0

Well done Dev Team!

 

Hoamboy_0-1686678222644.png

 

8 Replies 8
Xydocq
A model citizen
‎Jun 13 2023 11:31 PM
‎Jun 13 2023 11:31 PM

Good to know but....

 

not available on android app 2.90.0 or on the web app ☹️

0 Kudos
In response to Xydocq
Hoamboy
Getting noticed
‎Jun 14 2023 11:53 PM
‎Jun 14 2023 11:53 PM

Ehhh - in my web app I have it available:

 

Hoamboy_2-1686812114120.png

 

 

Maybe you check again?

Go to Hardware - take your GX - and click Settings upper right corner

In response to Hoamboy
Xydocq
A model citizen
‎Jun 15 2023 6:52 AM
‎Jun 15 2023 6:52 AM

Found it, thanks

 

But they just added that, now I see there are 2 NEW features available

 

Still missing on Android 

0 Kudos
speakerfritz
A model citizen
‎Jun 17 2023 9:29 AM
‎Jun 17 2023 9:29 AM

Is there anything useful that can be done with this ?

 

for example…can you setup a rule to allow all wan outbound internet traffic to go out a specified physical port other than your default internet port?

 

 

0 Kudos
In response to speakerfritz
Xydocq
A model citizen
‎Jun 18 2023 2:56 AM
‎Jun 18 2023 2:56 AM

depends on what you call useful?

 

You can block all outgoing internet traffic for a vlan, you can block vlan to vlan traffic or limit a vlan to access only certain parts of another vlan.

 

In my opinion, it is useful to have a level 3 firewall on a device.

0 Kudos
In response to Xydocq
speakerfritz
A model citizen
‎Jun 18 2023 4:26 AM
‎Jun 18 2023 4:26 AM

Came across this

 

————————————

For those looking for a list of ports to block, the SANS Institute recommends at least blocking outbound traffic using the following ports:

  • MS RPC TCP, UDP Port 135
  • NetBIOS/IP TCP, UDP Port 137-139
  • SMB/IP TCP Port 445
  • Trivial File Transfer Protocol (TFTP) UDP Port 69
  • System log UDP Port 514
  • Simple Network Management Protocol (SNMP) UDP Port 161-162
  • Internet Relay Chat (IRC) TCP Port 6660-6669

    ————————————-

 

abbraaa
New here
‎Aug 28 2023 4:54 AM
‎Aug 28 2023 4:54 AM

Are L3 firewall rules available on the GX20 or only the GX50? I have a GX20, I see the L3 Firewall Rules setting, but after I create a new rule it disappears. It does not show up in the list (empty) when I go back in, and is not being executed by the router. Using the iOS app. 

IMG_0042.jpeg

0 Kudos
In response to abbraaa
Xydocq
A model citizen
‎Aug 28 2023 7:20 AM
‎Aug 28 2023 7:20 AM

hi @abbraaa 

 

You should be able to set firewall-rules on a GX20.

 

Try to set the rules on web.meraki-go.com, if the rules are still not working open a support ticket.

 

After setting up the firewall-rules, you'll need to restart the GX20. More info can be found here: VLAN communicaton setup - The Meraki Community

 

Cheers

0 Kudos
Back to the top
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
© 2025 Cisco Systems, Inc.