Blocking inbound connection attempts on MX

SOLVED
ToryDav
Building a reputation

Blocking inbound connection attempts on MX

Hello,

Looking at the MX security report generated by my MX, I can see all kinds of connections attempts  being stopped by IPS, which is great.

Is there a way to create a rule to deny these connection attempts from a specific country, like China?

Would I simply create a layer 3 firewall rule that says

"deny source <PUBLIC BLOCK> destination < INTERNAL NET>"

Something of that nature?

1 ACCEPTED SOLUTION
ww
Kind of a big deal
Kind of a big deal

Connections  initiated  from outside  are not allowed. unless you created nat or forwarding rules.

 

Geo blocking can be used with adv sec lic

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Firewall_Settings#Geo-IP_Based_F...

View solution in original post

1 REPLY 1
ww
Kind of a big deal
Kind of a big deal

Connections  initiated  from outside  are not allowed. unless you created nat or forwarding rules.

 

Geo blocking can be used with adv sec lic

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Firewall_Settings#Geo-IP_Based_F...

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels