Meraki

Community

Limit internet access for some users / machines

joaquimlopes
Here to help
‎May 20 2025 4:25 AM
‎May 20 2025 4:25 AM

Limit internet access for some users / machines

Hi,

i need to have some machines to have internet access limited in 2 scenarios

1. only allow internal sites and office365 or similar cloud services for updating. i'll like to add them manually

2. have open internet access but block some sites, like instagram and similar, i'll like to add them manually

could have the blocking being done on the pc itself or by user(don't know if we need/have a special license to use ad)

Meraki is a bit limited to do those kinds of things if I’m seeing it correctly

What are the best ways to accomplish this?

Thx

 

Labels:
0 Kudos
5 Replies 5
alemabrahao
Kind of a big deal
Kind of a big deal
‎May 20 2025 4:59 AM
‎May 20 2025 4:59 AM

You can block all traffic using Layer 3 and 7 rules and Meraki content filtering, and then add specific domains or IP ranges to the allowlist.

For Office 365, Microsoft publishes IP ranges and URLs that you can allow.

 

https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Using_Layer_3_Firewal...

 

https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Creating_a_Layer_7_Fi...

 

https://documentation.meraki.com/MX/Content_Filtering_and_Threat_Protection/Content_Filtering

 

https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Creating_and_Applying...

 

If you want to apply this only to a specific group of machines or specific VLANs, you can use Group Policies.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
In response to alemabrahao
joaquimlopes
Here to help
‎May 21 2025 9:18 AM
‎May 21 2025 9:18 AM

Thx, the Meraki content filtering is not applied as an on/off switch? the same content filtering is applied to everyone?
can you create some granularity like create content filter policy?

 

 

0 Kudos
In response to joaquimlopes
alemabrahao
Kind of a big deal
Kind of a big deal
‎May 21 2025 9:35 AM
‎May 21 2025 9:35 AM

I didn't understand the first question.

No, there isn't much granularity in Meraki as you can see in the documentation.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
In response to alemabrahao
Main10ence
Meraki Employee
Meraki Employee
‎May 21 2025 12:56 PM
‎May 21 2025 12:56 PM

Content filtering within group policy can be configured to use the default content filtering (what's configured on the MX), append, or override. 

.ılı.ılı. Cisco Meraki
Network Support Engineer

"The future favors the bold."
Main10ence
Meraki Employee
Meraki Employee
‎May 20 2025 11:39 AM
‎May 20 2025 11:39 AM

Hello @joaquimlopes ,

 

I would be better to use group policies and apply them directly to the clients in question. This gives you the most granularity. 

 

@alemabrahao has provided the necessary documents to help with configurations.

.ılı.ılı. Cisco Meraki
Network Support Engineer

"The future favors the bold."
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.