We have a VPN tunnel with a non-Meraki peer, with subnet 192.168.aaa.0/24.
I have to block a source ip address range to access one destination on my subnet (192.168.bbb.ccc/32).
Please note that I defined a VLAN with the subnet 192.168.bbb.0/24.
If I try insert the following rule on the firewall:
Deny | Any | 192.168.aaa.0/24 | 192.168.bbb.ccc/32 | Any | Some comment
I receive the following error:
- The IP address range 192.168.aaa.0/24 does not apply to any configured local or VPN subnets.
So, how to filter them via Firewall policy, not Group policy?
Many thanks in advance!