CISCO Meraki SD-WAN

Vaishkhan
Comes here often

CISCO Meraki SD-WAN

Hi everyone,

i am creating below mentioned policy to deny/Block access of destination on port 8080 but its not working.

at spoke locations we have Mx68 and at hub location we have MX450 with site to site vpn.

 

Vaishkhan_0-1597839005714.png

 

please guide.

Thanks & Regards
2 REPLIES 2
ww
Kind of a big deal
Kind of a big deal

Where do you apply  this?

Your destination ip is learned  from the vpn tunnel?

Tadpole86
Getting noticed

There are two firewall engines on the MX, one for site to site traffic and one for the rest. 

 

If you are trying to block traffic between two Meraki MXes you need to configure this under the outbound firewall rules found at the bottom of the site to site VPN page. 

 

It sounds like you are configuring this under the Firewall page which is why it is failing

 

 

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels