Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Issue with firewall rules on mx75 with 16.16

brianpmcp
Here to help
‎Mar 8 2022 8:03 AM
‎Mar 8 2022 8:03 AM

Issue with firewall rules on mx75 with 16.16

Getting a really weird issue on MX75s with firewall rules. if i change/amend or reorder firewall rules it seems to stop all rules working. If i have an allow or deny as rule 1, no matter the source or destination, traffic is either allowed or denied  to everything depending on the first rule. Its happened on a templated firewall and non templated firewall. A simple icmp deny from one host to 8.8.8.8 or 1.1.1.1 denies everything to the internet. Intervlan traffic and site to site traffic is no impacted.

0 Kudos
Subscribe
2 Replies 2
RaphaelL
Kind of a big deal
Kind of a big deal
‎Mar 8 2022 9:02 AM
‎Mar 8 2022 9:02 AM

Have you tried to reboot the MX ?

 

Any flow that is already present in the MX flow table won't be subjet to the rule change. A.k.a if you have an active flow , you can delete the rule , place a deny above it and so on and the flow will still work.

0 Kudos
Subscribe
In response to RaphaelL
brianpmcp
Here to help
‎Mar 8 2022 9:17 AM
‎Mar 8 2022 9:17 AM

Hi Raphael,

 

rebooted many times! I have reverted back to 16.15 as well, the only change that that has impacted it the intervlan is now blocked. Previously the same scenario was permitting intervlan but denying all internet traffic

 

brianpmcp_0-1646759693188.png

 

As you can see all traffic is hitting a specific rule at no 1

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.