MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP(subnets)

SOLVED
Kave
Getting noticed

MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP(subnets)

MX 84 Outbound Firewall Difficult to make Multiple Source IP.( Multiple Subnets)

Need help to find any solution to make it easier? Meraki does not Allow you to make Site-to-site outbound firewall rules with 2 or more IP sources. Capture4_LI.jpgCapture4.JPGCapture4.JPG

kav noroozi
1 ACCEPTED SOLUTION

Accepted Solutions
General-Zod
Getting noticed

Re: MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP

I'm assuming you have tried to do this and it failed?

However I'm able to do this with no problems, see screenshot.

 

meraki-mx1.JPG

 

View solution in original post

4 REPLIES 4
General-Zod
Getting noticed

Re: MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP

Greetings,

 

You can specify multiple source IP's in the outbound VPN firewall policies. Looks like you're not entering the IP address correctly (from your screenshot). Each IP must be separated by a comma. See below:

 

meraki-mx.JPG

 

 

Kave
Getting noticed

Re: MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP

Thank you General-Zod,
But I think my question was wrong, i need to make a bunch of the subnet in source IP.
somthing like 192.168.3.0/24,192.168.1.0/24,192.168.4.0/24.................
kav noroozi
General-Zod
Getting noticed

Re: MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP

I'm assuming you have tried to do this and it failed?

However I'm able to do this with no problems, see screenshot.

 

meraki-mx1.JPG

 

View solution in original post

Kave
Getting noticed

Re: MX 84  Site-to-site outbound firewall rules is Difficult to make Multiple Source IP

Thank you General-zod, before That I did not use space after the comma.
kav noroozi
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.