We have some web servers behind a Meraki MX84, and we have logged various locations that have been scanning our websites to inject exploits. I have looked at the options available on the MX84 series listed under "Security Appliance" > "Threat Protection" and I see only a couple of dropdowns like "Mode" and "Ruleset."
Am I missing additional functionality somewhere? I'm looking for additional protection like:
Intrusion prevention including Deep Packet Inspection.
Scanning packets for payloads, vulnerabilities and exploits.
Identifying and blocking command and control bots.
Identifying and blocking attacks that abuse protocols.