Meraki

Community

Restricting Cellular Usage on certain apps, force to WiFi only

Solved
Lburk
Here to help
‎May 4 2023 7:42 AM
‎May 4 2023 7:42 AM

Restricting Cellular Usage on certain apps, force to WiFi only

I'm attempting to figure out if there is a way to force certain apps to WiFi only and not use cellular data. We are experiencing over the top cellular data usage on some of our devices. I would rather restrict them instead of removing the apps and punishing everyone for not following company protocols. Any help is greatly appreciated! Thanks.

Labels:
0 Kudos
1 Accepted Solution
In response to Lburk
PaulF
Meraki Employee
Meraki Employee
‎May 11 2023 8:14 PM
‎May 11 2023 8:14 PM

It won't show you who is abusing data. It will just prevent it.

View solution in original post

0 Kudos
12 Replies 12
alemabrahao
Kind of a big deal
Kind of a big deal
‎May 4 2023 8:18 AM
‎May 4 2023 8:18 AM

I think it is not possible to configure via MDM only by changing directly on the smartphone.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
PhilipDAth
Kind of a big deal
Kind of a big deal
‎May 4 2023 2:44 PM
‎May 4 2023 2:44 PM

Are you talking about the case of blocking the apps if there is only cellular available, so they can only work over WiFi?

 

I agree with @alemabrahao , this would be an MDM function, if available.

 

Some phones have the concept of a "data saver" function.  So you might be able to configure this per phone, by getting the user's phone and configuring it, but you won't be able to automate this without an MDM.

PhilipDAth
Kind of a big deal
Kind of a big deal
‎May 4 2023 2:46 PM
‎May 4 2023 2:46 PM

Going sideways - you could consider using something like Cisco Umbrella, and installing that onto all your mobile devices.  Then you can see which apps are chewing the data, and out right block non-company apps.  The block would be on cellular and WiFi.

0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
‎May 4 2023 2:47 PM
‎May 4 2023 2:47 PM

This would be a lot of work - but you might be able to do this with AnyConnect.  Configure AnyConnect on mobile in full tunnel mode.  Use trusted network detection to turn the VPN off when on company WiFi, and back on otherwise.

 

Create firewall rules on your MX blocking traffic from the AnyConnect subnet to the apps the users are not allowed to use when not on company WiFi.

0 Kudos
PaulF
Meraki Employee
Meraki Employee
‎May 8 2023 7:28 PM
‎May 8 2023 7:28 PM

So, I see that you have iOS tagged, which makes this relatively straightforward. You'll need the Network Usage Rules setting

 

Screenshot 2023-05-09 at 10.27.37 AM.png

 This should work perfectly for your use case.

In response to PaulF
Lburk
Here to help
‎May 9 2023 1:17 PM
‎May 9 2023 1:17 PM

I'm testing this now on a few devices to make sure no other issues crop up, but this does seem to be the way. Thank you!

0 Kudos
In response to Lburk
Lburk
Here to help
‎May 9 2023 2:00 PM
‎May 9 2023 2:00 PM

I've been testing various device and this works PERFECTLY. If the device isn't connected to WiFi the apps in question will not work. Just what I needed. Thankyou. Now though, I have a follow-up question if I may.

 

Take Netflix for example. If I create a security policy and enable Application (System Manager\Policies\Security Policies\ All Devices\Application) and list Netflix.com will this prevent Netflix .com from loading from in Safari or Chrome, will this work?

0 Kudos
In response to Lburk
PaulF
Meraki Employee
Meraki Employee
‎May 9 2023 11:24 PM
‎May 9 2023 11:24 PM

A security policy doesn't prevent something, it only allows you to show devi cos which are compliant / non compliant against this policy.

 

What you need is a Restrictions profile. Under Show / Hide Apps, you can add your app(s) here

Screenshot 2023-05-10 at 2.23.11 PM.png

0 Kudos
In response to PaulF
Lburk
Here to help
‎May 11 2023 6:23 AM
‎May 11 2023 6:23 AM

So by setting the policy as I stated above, it should then show me if someone is going to certain websites? Is this correct. I setup the network usage as you suggested and it's working perfectly. I'm just trying to cover my bases and curb the abuse we're seeing. Thank you once again.

0 Kudos
In response to Lburk
PaulF
Meraki Employee
Meraki Employee
‎May 11 2023 8:14 PM
‎May 11 2023 8:14 PM

It won't show you who is abusing data. It will just prevent it.

0 Kudos
In response to PaulF
Lburk
Here to help
‎May 12 2023 6:15 AM
‎May 12 2023 6:15 AM

That's even better. Thanks Paul!

0 Kudos
Sunny21DC
Here to help
‎May 28 2024 12:14 AM
‎May 28 2024 12:14 AM

There are several reasons why apps might not be downloading on cellular data on your phone. Here are some steps you can try to fix it:-

1. Check Cellular Data Settings:-

  • iPhone:- Go to Settings > Cellular and make sure the toggle for App Store is switched on. Additionally, if you're using iOS 13 or later, check if Low Data Mode is enabled under Cellular Data Options. Turn it off if it is.
  • Android:- The steps might vary slightly depending on your device, but generally you'll find it under Settings > Apps & notifications (or a similar menu). Look for the Google Play Store app and ensure Mobile data is enabled under Data usage.

 

2. Restart Your Phone:- A simple restart can often clear temporary glitches that might be causing the download issue.

3. Update Your Device and Apps:- Make sure your phone is running the latest software update. Outdated software can sometimes lead to compatibility issues. Also, check if there are any pending updates available for the App Store or Google Play Store itself.

4. Clear App Store/Play Store Cache:- This can help refresh the app and resolve download issues. The method will vary depending on your device, but you can usually find it under Settings > Apps (or similar menu). Locate your app store app (App Store or Google Play Store) and clear its cache and data.

5. Reset Network Settings:- Go to Settings > General > Reset > Reset Network Settings (iPhone) or Settings > System > Reset options > Reset Wi-fi, mobile & Bluetooth (Android).

Follow for more informatics instruction below.

https://www.youtube.com/watch?v=2Ojcmx8DhK8&ab_channel=TheGeekPage

 

 

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.