we currently have a problem with our VPN/Content-Filtering setup. Our topology looks like this:
MX450 (Advanced Licence) with Search Filtering enabled / this is our breakout to the www
MX100 (no content filters applied)
MX64 (no content filters applied)
-> VPN-Spoke & DHCP-Server for the HotSpot-SSID (VLAN 10 in VPN)
-> inside this Network we have multiple APs broadcasting a public HotSpot SSID
-> the APs run in bridge-mode with VLAN 10 set (which is our HotSpot Subnet running in VPN)
The issue we have, is that the normal content filters for pornography in general apply as expected. For example: you cannot reach www.*ornhub.com.
If, however, you search for adult content in google: eg; image search - nothing, as my virgin eyes can guarantee, is filtered whatsoever
We have reached out to Meraki-Support and have basically received the answer:
Advanced CF has to be applied at the Edge of the Network - the setup, as is, will not or at least should not work.
Seems to be a sales strategy as we would obviously be forced to buy many many more advanced licences.
Has anyone else encountered a similar situation?
That's what "Safe Search" is meant to solve. 🙂
>be forced to buy many many more advanced licences.
If you buy one advanced licence then every MX in the organisation has to also have an advanced licence. So you must already have these licences - so you have nothing to buy.
Meraki Support are correct, the filtering has to be done at the edge. You can not do a full tunnel and then just filter at that point.
Also I don't think content filtering works on Google search images. You would have to enable Google Safe Search for that.
View all community news »