Meraki

RahulPrasadh

Is it possible to enable IPS (or at least IDS) on a Meraki MX105 running firmware MX 18.211.6 to inspect all unencrypted traffic for ransomware, malware, and virus signatures, and block anything nefarious? Or can we have an easily applied policy not a substitute for endpoint solutions, just to maximize network protection. I can't see this configuration option in my MX (Security & SD-WAN > Configure > Threat protection > Intrusion detection and prevention.)

RWelch

Are you using enterprise or advanced licensing?

Meraki MX/Z Security and SD-WAN Licensing

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.

View solution in original post

RWelch

Are you using enterprise or advanced licensing?

Meraki MX/Z Security and SD-WAN Licensing

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.

RahulPrasadh

Enterprise licensing, so this option would not be available in this? we would need advanced licensing. Thank for clarification.

RWelch

The advanced security license and Secure SD-WAN+ will allow IDS/IPS (yes) whereas it's not an option with the enterprise license.

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.

PhilipDAth

Content Filtering is quite effective at blocking access to content *prior* to it being downloaded - but you need an "Advanced Security" licence.

These are the categories I like to use.
ps. I chose everything under "Threat Categories".

Meraki

Community

Enabling IPS

Enabling IPS