Meraki

Community

In Meraki how to block all outside VPN connections

RahulPrasadh
Getting noticed
‎Jan 8 2025 8:46 AM
‎Jan 8 2025 8:46 AM

In Meraki how to block all outside VPN connections

Need to block all outside VPN connections in Meraki. How to configure this and what are the information required. Is there any supporting Meraki Documentation to refer.

0 Kudos
2 Replies 2
VivekT
Getting noticed
‎Jan 8 2025 9:46 AM
‎Jan 8 2025 9:46 AM

Hi Rahul,

Hope you are doing well !

 

outside vpn here refers to Site to Site VPN. I am assuming the same.

 

To block all outside VPN connections on a Meraki network, you need to configure firewall rules within the Meraki dashboard, specifically targeting VPN traffic by protocol and port numbers, effectively denying all incoming connections on those ports; you can access relevant documentation in the Meraki dashboard under "Security & SD-WAN > Configure > Firewall.

 

But before the above steps permit the connection  from known vpn peer on same protocol.

 

If you are referring to client to site vpn.

 

https://documentation.meraki.com/MX/Client_VPN/Restricting_Client_VPN_access_using_Layer_3_firewall_...

 

PhilipDAth
Kind of a big deal
Kind of a big deal
‎Jan 8 2025 11:27 AM
‎Jan 8 2025 11:27 AM

If you are referring to client VPN (users outside of your network connecting in), turned off client VPN on the MX.

 

If you are talking about things like BitTorrent, use a layer 7 firewall rule.

https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Creating_a_Layer_7_Fi...

 

PhilipDAth_2-1736364544983.png

 

 

If you are talking about privacy VPNs, use content filtering and block these two:

 

PhilipDAth_1-1736364487675.png

 

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.