Meraki

Community

Blocking inbound connection attempts on MX

Solved
ToryDav
Building a reputation
‎Oct 25 2021 8:26 AM
‎Oct 25 2021 8:26 AM

Blocking inbound connection attempts on MX

Hello,

Looking at the MX security report generated by my MX, I can see all kinds of connections attempts  being stopped by IPS, which is great.

Is there a way to create a rule to deny these connection attempts from a specific country, like China?

Would I simply create a layer 3 firewall rule that says

"deny source <PUBLIC BLOCK> destination < INTERNAL NET>"

Something of that nature?

0 Kudos
1 Accepted Solution
ww
Kind of a big deal
Kind of a big deal
‎Oct 25 2021 8:33 AM
‎Oct 25 2021 8:33 AM

Connections  initiated  from outside  are not allowed. unless you created nat or forwarding rules.

 

Geo blocking can be used with adv sec lic

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Firewall_Settings#Geo-IP_Based_F...

View solution in original post

1 Reply 1
ww
Kind of a big deal
Kind of a big deal
‎Oct 25 2021 8:33 AM
‎Oct 25 2021 8:33 AM

Connections  initiated  from outside  are not allowed. unless you created nat or forwarding rules.

 

Geo blocking can be used with adv sec lic

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Firewall_Settings#Geo-IP_Based_F...

Back to the top
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.