Meraki

Community

Block IP Add for Meraki Dashboard

Deniz
Meraki Employee
Meraki Employee
‎Nov 16 2018 5:14 AM
‎Nov 16 2018 5:14 AM

Block IP Add for Meraki Dashboard

Hi All,

 

I dont know if this question has been asked or makes sense, but I see that constantly someone is trying to access my Meraki dashboard with same IP add.

 

Any possibility to block a specific IP add, range etc that is trying to access dashboard?

 

Thanks,

Deniz

0 Kudos
8 Replies 8
rhbirkelund
Kind of a big deal
Kind of a big deal
‎Nov 16 2018 5:40 AM
‎Nov 16 2018 5:40 AM

Organization > Settings > Security > Login IP ranges
LinkedIn ::: https://blog.rhbirkelund.dk/

Like what you see? - Give a Kudo ## Did it answer your question? - Mark it as a Solution 🙂

All code examples are provided as is. Responsibility for Code execution lies solely your own.
In response to rhbirkelund
Deniz
Meraki Employee
Meraki Employee
‎Nov 16 2018 5:41 AM
‎Nov 16 2018 5:41 AM

Thanks for respond, but this will allow access only from specific IP ranges, and block all others 🙂 

I was more looking at option to block a specific IP add who is trying to access the dashboard. 

 

Thanks,

Deniz

 

 

0 Kudos
NolanHerring
Kind of a big deal
‎Nov 16 2018 5:59 AM
‎Nov 16 2018 5:59 AM

Doesn't this mean that the person has an account of some fashion to even show up in the logs?
Nolan Herring | nolanwifi.com
TwitterLinkedIn
0 Kudos
In response to NolanHerring
MacuserJim
A model citizen
‎Nov 16 2018 8:36 AM
‎Nov 16 2018 8:36 AM

I think adding a firewall rule to block that IP would do the trick for you.

0 Kudos
In response to MacuserJim
rhbirkelund
Kind of a big deal
Kind of a big deal
‎Nov 16 2018 9:00 AM
‎Nov 16 2018 9:00 AM

I don't think that adding an inbound Firewall rule, will block the malicious IP from logging into the dashboard. The Inbound FW rule will block all packets incoming to the Firewall. The dashboard is a hosted service on Meraki(/Cisco) datacenters, which fetch information from the Meraki network.

LinkedIn ::: https://blog.rhbirkelund.dk/

Like what you see? - Give a Kudo ## Did it answer your question? - Mark it as a Solution 🙂

All code examples are provided as is. Responsibility for Code execution lies solely your own.
0 Kudos
In response to rhbirkelund
MacuserJim
A model citizen
‎Nov 16 2018 9:02 AM
‎Nov 16 2018 9:02 AM

Oh you're right, sorry I was thinking local status page, I was doing some work with those this morning and had it on my mind.

0 Kudos
In response to MacuserJim
rhbirkelund
Kind of a big deal
Kind of a big deal
‎Nov 16 2018 9:10 AM
‎Nov 16 2018 9:10 AM

I can't see a way to block specific IPs from accessing Meraki Dashboard. 

 

Personally, I don't allow specific IPs to login to dashboard. I allow all. Adding 2FA to the equation. Everyone can try to login, but it won't help them. Especially if you are using unique login credentials. Additionally, the dashboard will become less secure, the more administrators that you add. 

 

I've added my work IPs and my home IP to the allow list for accessing remote status pages of the MX, so that I can check things if needed.

LinkedIn ::: https://blog.rhbirkelund.dk/

Like what you see? - Give a Kudo ## Did it answer your question? - Mark it as a Solution 🙂

All code examples are provided as is. Responsibility for Code execution lies solely your own.
0 Kudos
In response to rhbirkelund
Deniz
Meraki Employee
Meraki Employee
‎Nov 20 2018 12:39 AM
‎Nov 20 2018 12:39 AM

Thats correct! They are not trying to access your firewall, but dashboard which locates in the cloud 🙂 

Im not sure there is any way of doing this. Only solution is, of course, to let him try, and use strong passwords, two factor authenticator, and/or to let specific IP range access the dashboard. 

 

Still i am open for any discussion 🙂 

Thanks all for stepping in! 

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.