Meraki

Community

Blocking TikTok

workmen
Here to help
13 hours ago
13 hours ago

Blocking TikTok

HI Guys, 

 

I created a Layer 3 outbound rule to block TikTok. I created 2 policy object groups namely TikTok [collection of TikTok IP addresses] and TikTok Domain [collection of TikTok domains] and call it on the L3 rule destination but despite that I am still seeing usage of TikTok, as if it was not blocked but I am seeing that it has 26 hits though. iPolicy ObjectsPolicy ObjectsOutbound RuleOutbound RuleHosts contributing to ruleHosts contributing to rule

0 Kudos
7 Replies 7
alemabrahao
Kind of a big deal
13 hours ago
13 hours ago

According to the screenshot, it is being denied in the rule you created. Have you done any validation to make sure they are still able to access it?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
workmen
Here to help
13 hours ago
13 hours ago

Yep they are still able to access it.

0 Kudos
In response to workmen
michalc
Meraki Employee
Meraki Employee
13 hours ago
13 hours ago

Certain apps like YouTube and TikTok are very difficult to block these days. You might want to try and fully block UDP port 443 (QUIC) if your main priority on the network is to block the TikTok but please check for collateral damage. 

0 Kudos
alemabrahao
Kind of a big deal
13 hours ago
13 hours ago

Take a look at this.

 

https://community.meraki.com/t5/Security-SD-WAN/Blocking-TIKTOK-in-2024/m-p/221020

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
RWelch
Kind of a big deal
Kind of a big deal
13 hours ago
13 hours ago

Tiktok.png

TikTok is recognized by NBAR.

Can you set a L7 DENY rule using TikTok?

TikTok2.png

 

After making the policy change, verify it lists TikTok

 

TikTok3.png

 

Safari can't connect now so it appears that L7 (stateless) blocking works, or it did for me anyway.

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
0 Kudos
RWelch
Kind of a big deal
Kind of a big deal
13 hours ago
13 hours ago

You might continue to see Tiktok sessions that remain active sessions.

Firewall rules do not work on active sessions.

 

You'd need to wait like 10 minutes for the firewall to clear active session.

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
0 Kudos
michalc
Meraki Employee
Meraki Employee
13 hours ago
13 hours ago

From your screenshots It seems that the DENY rule is being triggered, which aligns with the objective of blocking TikTok traffic.

Please see the very helpful KB on Layer 3 and 7 Firewall Processing Order.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.