cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP(subnets)

SOLVED
Here to help

MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP(subnets)

MX 84 Outbound Firewall Difficult to make Multiple Source IP.( Multiple Subnets)

Need help to find any solution to make it easier? Meraki does not Allow you to make Site-to-site outbound firewall rules with 2 or more IP sources. Capture4_LI.jpgCapture4.JPGCapture4.JPG

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Getting noticed

Re: MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP

I'm assuming you have tried to do this and it failed?

However I'm able to do this with no problems, see screenshot.

 

meraki-mx1.JPG

 

4 REPLIES 4
Getting noticed

Re: MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP

Greetings,

 

You can specify multiple source IP's in the outbound VPN firewall policies. Looks like you're not entering the IP address correctly (from your screenshot). Each IP must be separated by a comma. See below:

 

meraki-mx.JPG

 

 

Here to help

Re: MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP

Thank you General-Zod,
But I think my question was wrong, i need to make a bunch of the subnet in source IP.
somthing like 192.168.3.0/24,192.168.1.0/24,192.168.4.0/24.................
Highlighted
Getting noticed

Re: MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP

I'm assuming you have tried to do this and it failed?

However I'm able to do this with no problems, see screenshot.

 

meraki-mx1.JPG

 

Here to help

Re: MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP

Thank you General-zod, before That I did not use space after the comma.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.