Meraki

Jonasy · ‎Nov 7 2021

The default rule of the MX series network is all-pass. We want to allow only a specific MAC to use the network in a certain VLAN, and the other unconfigured MACs cannot connect to the MX at all. Is there a recommended setting method?

Can I set the default route of 0.0.0.0 to a certain router of the LAN, and only use SDWAN for a specific network segment?

Thanks.

KarstenI · ‎Nov 8 2021

You can change the default rule to "deny any any" and apply a group-policy to the client with access where the network rules are overridden.

For SD-WAN, you can specify which networks are part of the AutoVPN. What do you want to achieve exactly?

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

View solution in original post

KarstenI · ‎Nov 8 2021

You can change the default rule to "deny any any" and apply a group-policy to the client with access where the network rules are overridden.

For SD-WAN, you can specify which networks are part of the AutoVPN. What do you want to achieve exactly?

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

Inderdeep · ‎Nov 8 2021

@Jonasy : You can change your rules

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Firewall_Settings

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com

Meraki

Community

Specific MAC rule for MX

Specific MAC rule for MX