Meraki

Community

Identifying things blocked by layer 7 rules

macsolutions
Getting noticed
‎Aug 22 2019 2:10 PM
‎Aug 22 2019 2:10 PM

Identifying things blocked by layer 7 rules

I'm trying to only allow certain countries, but some things are getting blocked that shouldn't be.

 

For example, today I was trying to do an Apple iCloud password reset, and even though I was allowing the US, Canada, and most of western Europe, it still wouldn't work until I removed the rule.

 

Is there a way, in the logging, to detect what or where the block occurred? I did a visual traceroute, and it didn't seem to route through any non-allowed countries. In the syslog server, what search would I set up to know when a blocking rule was enforced?

0 Kudos
2 Replies 2
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Aug 22 2019 4:29 PM
‎Aug 22 2019 4:29 PM

Only by using syslog (which requires an external server).

https://documentation.meraki.com/zGeneral_Administration/Monitoring_and_Reporting/Syslog_Server_Over...

In response to PhilipDAth
BlakeRichardson
Kind of a big deal
Kind of a big deal
‎Aug 22 2019 5:53 PM
‎Aug 22 2019 5:53 PM

You could try a packet cpature on the affected device.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.