Meraki

j_e_m_67 · ‎Mar 7 2024

I tried using the Firewall but doesn't match any SD WAN traffic, not seeing any hits. I could do this on Velocloud so not sure how this works on Meraki. I couldn't find documentation on anything related to firewalling SD WAN traffic. Thanks for any help!

I will elaborate, I have SD WAN configured and is working fine. I would like to block certain traffic from being allowed over SD WAN from one of the spoke sites to the Hub.

Brash · ‎Mar 7 2024

L3 firewall rules don't apply so Auto-VPN traffic. You instead need to configure site-to-site VPN firewall rules (which are org wide)

https://documentation.meraki.com/MX/Site-to-site_VPN/Site-to-site_VPN_Firewall_Rule_Behavior

View solution in original post

alemabrahao · ‎Mar 7 2024

The SD-WAN will work on any MX model.

https://documentation.meraki.com/Architectures_and_Best_Practices/Cisco_Meraki_Best_Practice_Design/...

https://meraki.cisco.com/product-collateral/mx-family-datasheet/?file

https://documentation.meraki.com/General_Administration/Licensing/Meraki_MX_Security_and_SD-WAN_Lice...

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

alemabrahao · ‎Mar 7 2024

Take a look at this article.

https://meraki.cisco.com/blog/2018/07/sd-wan/

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

Brash · ‎Mar 7 2024

L3 firewall rules don't apply so Auto-VPN traffic. You instead need to configure site-to-site VPN firewall rules (which are org wide)

https://documentation.meraki.com/MX/Site-to-site_VPN/Site-to-site_VPN_Firewall_Rule_Behavior

j_e_m_67 · ‎Mar 7 2024

Thanks Brash, that is what I was needing!

Meraki

Community

Firewall SD-WAN Traffic on MX65 or MX68?

Firewall SD-WAN Traffic on MX65 or MX68?