Restrict Social Media sites for one subnet

netmice
New here

Restrict Social Media sites for one subnet

I have a requirement to block certain social media sites for specific subnet, I learnt that it is not doable in MX100 but can be done for a vlan. Unfortunately my SVIs are in the Core switch and I dont have that vlan in MX100. I did try to create a vlan/SVI (for which I need to restrict the traffic) on mx100 but It breaks my reachability from outside world to that subnet. Any one can help me out here ?

2 REPLIES 2
UCcert
Kind of a big deal

Hi @netmice 

 

Are you able to remove the VLAN SVI off the core and reconfigure on the MX100?  Do you have a schematic of your network we can see to help further?

Darren O'Connor | uccert.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.

I was hoping there is another way to do it, without moving the SVI from my core. The Setup is simple, I have a Juniper access and Core layer, All the SVI are in core and I have a default route from the Core to MX100 where I have all the VPNs configured and to the internet. Moving the SVI is the only option ?

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels