Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

How many Firewall rules are too much? And a few more Qs...

NWNSM1
Here to help
‎May 26 2022 4:16 AM
‎May 26 2022 4:16 AM

How many Firewall rules are too much? And a few more Qs...

Looking at the security log each day or more often, we block IPs that are doing malicious things.  Obviously, there are a fair amount of counties blocked but we have single IPs in the block list too.  How many are too many?  (We have a 450 MX.)

 

Also, how do you decide to enable snort rules that are not enabled by default?  

0 Kudos
Subscribe
2 Replies 2
PhilipDAth
Kind of a big deal
Kind of a big deal
‎May 26 2022 2:53 PM
‎May 26 2022 2:53 PM

You can't choose which individual snort rules to enable.  You can only choose between three rule sets, which are mostly based on CVSS scores and category.

 

https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Threat_Protection#Intrus... 

0 Kudos
Subscribe
CptnCrnch
Kind of a big deal
Kind of a big deal
‎May 27 2022 7:26 AM
‎May 27 2022 7:26 AM

I haven't heard of any limitations regarding firewall rules. I'm pretty sure it will be more than what you could be able to manage from a logical point of view though. 🙂

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.