So I would have to create a policy object for each IP address in that range, assign them to a group and then and then add the group to the rule??? 2001 wants its firewall rule base back 🙂 

Hi RobChandler,

Welcome to Meraki Community 🙂

Yes, you are correct.

Option 1 - You can change your Subnet range and add ACLs on the switch to forbit the traffic from the left 4-5 IP addresses to everywhere:

OR

Option 2 - You should be able to use individual /32 IP address in either the Src or Dest fields:

10.226.3.10/32

10.226.3.11/32

10.226.3.12/32

10.226.3.13/32

10.226.3.14/32

10.226.3.15/32

10.226.3.16/32

10.226.3.17/32

10.226.3.18/32

10.226.3.19/32

10.226.3.20/32

10.226.3.21/32

10.226.3.22/32

10.226.3.23/32

10.226.3.24/32

10.226.3.25/32

10.226.3.26/32

10.226.3.27/32

10.226.3.28/32

10.226.3.29/32

10.226.3.30/32

10.226.3.31/32

10.226.3.32/32

10.226.3.33/32

10.226.3.34/32

10.226.3.35/32

Option 3 - Create policy object group - kind of like a double work, in comparison with Option 2

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/Network_Objects_Highlights

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/Network_Objects_Configuration_Guide

If you have any questions, please don't hesitate to contact us.

If you found this post helpful, please give it kudos.
If my answer solved your problem, click "accept as solution" so that others can benefit from it 🙂

Hi Alex

Thanks for confirming - is there any scope for this to be changed? Using a range would so much more beneficial and is a standard feature on basically every other firewall product there is!

Thanks Rob  

We would strongly recommend making a feature request on the Meraki Dashboard as this is our primary method of tracking the requests for future dashboard changes.

Hi Jono - I have, I just hope more users do the same 

Thanks Rob