We want the Client VPN prevent from connecting from certain countries, We have firewall Layer 7 rule "Deny Traffic not to/ from USA, Canada, UK" ,but this rule did not helped , we found user able to connect from India.
WE open the t case with meraki support , they reply "Layer 7 rules do not apply to inbound Client VPN connections"
Is any one have idea how we can implement client vpn prevent from connecting from certain countries.
Solved! Go to solution.
I can't think of any way to do this.
Going sideways, if you want to improve your security posture, consider using MFA with Client VPN, such as Cisco Duo.
@knightrider : You can do that as shown below using Layer 7 rules
Yes this is what we have L7 rule in place, but user still able to connect .
What license you have on the MX ?
we have advanced security license for MX100
I can't think of any way to do this.
Going sideways, if you want to improve your security posture, consider using MFA with Client VPN, such as Cisco Duo.
Thanks this way we think off to go with