Meraki Community

Jonasy · ‎Nov 7 2021

The default rule of the MX series network is all-pass. We want to allow only a specific MAC to use the network in a certain VLAN, and the other unconfigured MACs cannot connect to the MX at all. Is there a recommended setting method?

Can I set the default route of 0.0.0.0 to a certain router of the LAN, and only use SDWAN for a specific network segment?

Thanks.

KarstenI · ‎Nov 8 2021

You can change the default rule to "deny any any" and apply a group-policy to the client with access where the network rules are overridden.

For SD-WAN, you can specify which networks are part of the AutoVPN. What do you want to achieve exactly?

View solution in original post

KarstenI · ‎Nov 8 2021

You can change the default rule to "deny any any" and apply a group-policy to the client with access where the network rules are overridden.

For SD-WAN, you can specify which networks are part of the AutoVPN. What do you want to achieve exactly?

Inderdeep · ‎Nov 8 2021

@Jonasy : You can change your rules

https://documentation.meraki.com/MX/Firewall_and_Traffic_Shaping/MX_Firewall_Settings

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com

Meraki Community

Specific MAC rule for MX

Specific MAC rule for MX