Meraki

Community

Content Filtering and Threat Protection through Meraki Client VPN (L2TP/IPsec)

Solved
gabriel-ribba
Conversationalist
‎Aug 30 2024 8:10 AM
‎Aug 30 2024 8:10 AM

Content Filtering and Threat Protection through Meraki Client VPN (L2TP/IPsec)

Hi everyone,

 

I'm using a Meraki MX68 with several users connected via the Meraki VPN client (L2TP/IPsec) in full tunnel mode. I'm trying to determine whether the security features like content filtering and threat protection are applied to traffic from these VPN clients. I couldn't find a clear answer in the documentation, so I'm hoping someone here might have experience or insight on this.

 

Also, i would think if i apply group policies to these users, the features mentioned above could apply to them, but i'm not sure.

 

Thanks in advance for your help!

Labels:
0 Kudos
1 Accepted Solution
KH
Meraki Employee All-Star Meraki Employee All-Star
Meraki Employee All-Star
‎Aug 30 2024 9:32 AM
‎Aug 30 2024 9:32 AM

Hey @gabriel-ribba 

 

Content Filtering and Threat protection features will apply to Anyconnect/Client VPN Users.

The Threat protection page mentions the following:

In both IDS and IPS modes the following is inspected: 

  • all traffic between LAN and the Internet 

  • all traffic between VLANs

If you found this post helpful, please give it kudos. If my answer solved your problem, click "accept as solution" so that others can benefit from it

View solution in original post

4 Replies 4
KH
Meraki Employee All-Star Meraki Employee All-Star
Meraki Employee All-Star
‎Aug 30 2024 9:32 AM
‎Aug 30 2024 9:32 AM

Hey @gabriel-ribba 

 

Content Filtering and Threat protection features will apply to Anyconnect/Client VPN Users.

The Threat protection page mentions the following:

In both IDS and IPS modes the following is inspected: 

  • all traffic between LAN and the Internet 

  • all traffic between VLANs

If you found this post helpful, please give it kudos. If my answer solved your problem, click "accept as solution" so that others can benefit from it
In response to KH
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Sep 1 2024 1:21 PM
‎Sep 1 2024 1:21 PM

I am not confident that content filtering is applied to client VPN users.  I would test this specific case.

Tony-Sydney-AU
Meraki Employee All-Star Meraki Employee All-Star
Meraki Employee All-Star
‎Sep 2 2024 3:20 PM
‎Sep 2 2024 3:20 PM

Hi @PhilipDAth , I tested and it works. But only if you have full tunnel. Split tunnel, naturally doesn't get traffic instection.

 

I think it is the same logic as Site-to-Site VPN in full tunnel.

If you found this post helpful, please give it kudos. If my answer solved your problem, click "accept as solution" so that others can benefit from it.
In response to Tony-Sydney-AU
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Sep 2 2024 5:09 PM
‎Sep 2 2024 5:09 PM

Thanks for testing this.

0 Kudos
Back to the top
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.