- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
How to configure MX85 for SFTP and allow a particular IP address
I have a client that wants to use SFTP. I have an MX85. They want to send and receive data. I have an IP that I want to allow. What entries are needed to configure this? I am guessing I start under firewall. After that, looking to learn.
- Labels:
-
Firewall
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
If you don't have any firewall rule you don't need to create any firewall rule. All traffic is allowed by default.
https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Firewall_Settings
Please, if this post was useful, leave your kudos and mark it as solved.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
You are going to need to configure a the MX to forward port 22 to your SFTP server.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I hope not, opening servers to the internet is always a risk.
Please, if this post was useful, leave your kudos and mark it as solved.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
It all depends on the flow of the expected traffic. i.e. If the SFTP client is initiating the connection. Then no issue, it's what Firewalls' were built for. Simply put a firewall rule and port forwards/nat in place to limit the port and hosts. Something like the below.
You could also pop the client in it's own DMZ as well. Just need to be very specific with Source and Destination hosts.
Cheers,
Ivan
Cheers,
Ivan Jukić,
Meraki APJC
If you found this post helpful, please give it kudos. If it solved your problem, click "accept as solution" so that others can benefit from it.
