Meraki

Community

Whitelist traffic from Company Remote site in country X to hit our website while blocking country

Dan91
Here to help
yesterday
yesterday

Whitelist traffic from Company Remote site in country X to hit our website while blocking country

Hello,

 

Simple question.  Are we able to allow a company's remote site in another country (for example country name - TEST) assuming we can get their external static IP address, while at the same time blocking country - TEST via the Layer 7 Firewall rules section?

 

We have a 1:1 NAT rule for the website set up that allows 'any' remote IP.  But the a company site in the country TEST cannot hit our website.  My initial research says this may not be possible, though I may be overlooking something.  Thanks for any information you provide!

MX Layer 7 Deny Countries rulesMX Layer 7 Deny Countries rules

 

 

 

 

Labels:
0 Kudos
3 Replies 3
RWelch
Kind of a big deal
Kind of a big deal
yesterday
yesterday

There is no "allow" functionality for Layer 7 rules.

 

Override Layer 7 Firewall Rule Blocking Country - URL exception 

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
In response to RWelch
Dan91
Here to help
yesterday
yesterday

That is what I expected after reading through the docs and looking at another post in the community forums.  I have put in a ticket with Meraki/Cisco just to be sure.  Thanks for the response!

0 Kudos
Inderdeep
Kind of a big deal
yesterday
yesterday

No i guess 

Personal Blogs https://www.thenetworkdna.com/
0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.