Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Restrict Social Media sites for one subnet

netmice
New here
‎Jul 7 2020 8:37 AM
‎Jul 7 2020 8:37 AM

Restrict Social Media sites for one subnet

I have a requirement to block certain social media sites for specific subnet, I learnt that it is not doable in MX100 but can be done for a vlan. Unfortunately my SVIs are in the Core switch and I dont have that vlan in MX100. I did try to create a vlan/SVI (for which I need to restrict the traffic) on mx100 but It breaks my reachability from outside world to that subnet. Any one can help me out here ?

0 Kudos
Subscribe
2 Replies 2
DarrenOC
Kind of a big deal
Kind of a big deal
‎Jul 7 2020 10:31 AM
‎Jul 7 2020 10:31 AM

Hi @netmice 

 

Are you able to remove the VLAN SVI off the core and reconfigure on the MX100?  Do you have a schematic of your network we can see to help further?

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
0 Kudos
Subscribe
In response to DarrenOC
netmice
New here
‎Jul 8 2020 2:14 AM
‎Jul 8 2020 2:14 AM

I was hoping there is another way to do it, without moving the SVI from my core. The Setup is simple, I have a Juniper access and Core layer, All the SVI are in core and I have a default route from the Core to MX100 where I have all the VPNs configured and to the internet. Moving the SVI is the only option ?

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.