Meraki

Community

Blocking inbound connection attempts on MX

Solved
ToryDav
Building a reputation
‎Oct 25 2021 8:26 AM
‎Oct 25 2021 8:26 AM

Blocking inbound connection attempts on MX

Hello,

Looking at the MX security report generated by my MX, I can see all kinds of connections attempts  being stopped by IPS, which is great.

Is there a way to create a rule to deny these connection attempts from a specific country, like China?

Would I simply create a layer 3 firewall rule that says

"deny source <PUBLIC BLOCK> destination < INTERNAL NET>"

Something of that nature?

0 Kudos
1 Accepted Solution
ww
Kind of a big deal
Kind of a big deal
‎Oct 25 2021 8:33 AM
‎Oct 25 2021 8:33 AM

Connections  initiated  from outside  are not allowed. unless you created nat or forwarding rules.

 

Geo blocking can be used with adv sec lic

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Firewall_Settings#Geo-IP_Based_F...

View solution in original post

1 Reply 1
ww
Kind of a big deal
Kind of a big deal
‎Oct 25 2021 8:33 AM
‎Oct 25 2021 8:33 AM

Connections  initiated  from outside  are not allowed. unless you created nat or forwarding rules.

 

Geo blocking can be used with adv sec lic

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Firewall_Settings#Geo-IP_Based_F...

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.