Meraki

Community

Intrusion Prevention with MX84

ronn
Conversationalist
‎Aug 2 2018 11:22 AM
‎Aug 2 2018 11:22 AM

Intrusion Prevention with MX84

We have some web servers behind a Meraki MX84, and we have logged various locations that have been scanning our websites to inject exploits. I have looked at the options available on the MX84 series listed under "Security Appliance" > "Threat Protection" and I see only a couple of dropdowns like "Mode" and "Ruleset."  

 

Am I missing additional functionality somewhere?  I'm looking for additional protection like:

 

Intrusion prevention including Deep Packet Inspection.

Scanning packets for payloads, vulnerabilities and exploits.

Identifying and blocking command and control bots. 

Identifying and blocking attacks that abuse protocols.

 

0 Kudos
2 Replies 2
jdsilva
Kind of a big deal
‎Aug 2 2018 12:04 PM
‎Aug 2 2018 12:04 PM

Nope. that's about all you get. However, a few of the settings you're asking about are implied already.

 

https://documentation.meraki.com/MX-Z/Content_Filtering_and_Threat_Protection/Threat_Protection#Intr...

 

 

http://blog.brokennetwork.ca | @jdsilva
In response to jdsilva
Adam
Kind of a big deal
‎Aug 2 2018 1:59 PM
‎Aug 2 2018 1:59 PM

We go with mode: prevention, ruleset: security

Adam R MS | CISSP, CISM, VCP, MCITP, CCNP, ITILv3, CMNO
If this was helpful click the Kudo button below
If my reply solved your issue, please mark it as a solution.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.