Blocking inbound connection attempts on MX

SOLVED
ToryDav
Getting noticed

Blocking inbound connection attempts on MX

Hello,

Looking at the MX security report generated by my MX, I can see all kinds of connections attempts  being stopped by IPS, which is great.

Is there a way to create a rule to deny these connection attempts from a specific country, like China?

Would I simply create a layer 3 firewall rule that says

"deny source <PUBLIC BLOCK> destination < INTERNAL NET>"

Something of that nature?

1 ACCEPTED SOLUTION
ww
Kind of a big deal
Kind of a big deal

Connections  initiated  from outside  are not allowed. unless you created nat or forwarding rules.

 

Geo blocking can be used with adv sec lic

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Firewall_Settings#Geo-IP_Based_F...

View solution in original post

1 REPLY 1
ww
Kind of a big deal
Kind of a big deal

Connections  initiated  from outside  are not allowed. unless you created nat or forwarding rules.

 

Geo blocking can be used with adv sec lic

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Firewall_Settings#Geo-IP_Based_F...

View solution in original post

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels