Identifying things blocked by layer 7 rules

macsolutions
Here to help

Identifying things blocked by layer 7 rules

I'm trying to only allow certain countries, but some things are getting blocked that shouldn't be.

 

For example, today I was trying to do an Apple iCloud password reset, and even though I was allowing the US, Canada, and most of western Europe, it still wouldn't work until I removed the rule.

 

Is there a way, in the logging, to detect what or where the block occurred? I did a visual traceroute, and it didn't seem to route through any non-allowed countries. In the syslog server, what search would I set up to know when a blocking rule was enforced?

2 REPLIES 2
PhilipDAth
Kind of a big deal

You could try a packet cpature on the affected device.

Meraki CMNO, Ruckus WISE, Sonicwall CSSA, Allied Telesis CASE & CAI
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels