Content filtering bypassed after multiple refreshes

Solved
RO
Conversationalist

Content filtering bypassed after multiple refreshes

Hi All, 

In our content filtering, we have blocked certain categories like games, adult and more explicit contents. Meraki's content filtering works fine at first go and blocks as they detect URLs from these listed categories but when a client refreshes the blocked web browser several times then it bypasses the content filtering, and it's no longer blocked.

MX fails to properly read the SNI due to the segmentation/separation. Therefore, it allows the pages. The other SNIs might be coming from server cert after being allowed.

 

Just wanted to know if it's happening to others as well.

 

I have raised a Meraki support case, and I was told that this is a known issue, and a fix is on the next firmware update.

Anyone with similar issue? 


MX Version: MX 18.211.2

Kind regards,

RO

1 Accepted Solution
RaphaelL
Kind of a big deal
Kind of a big deal

Hi ,

 

Have you tried MX 18.211.3 : 

 

  • Resolved a rare issue that resulted in MX appliances failing to block websites when the TLS initialization messages were segmented across multiple packets.

View solution in original post

1 Reply 1
RaphaelL
Kind of a big deal
Kind of a big deal

Hi ,

 

Have you tried MX 18.211.3 : 

 

  • Resolved a rare issue that resulted in MX appliances failing to block websites when the TLS initialization messages were segmented across multiple packets.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels