Meraki

Community

Disable routing on the core

Adam5
Just browsing
‎Jul 10 2023 5:19 AM
‎Jul 10 2023 5:19 AM

Disable routing on the core

Good morning, 

 

Looking for something that can be done in the event of a cyber attack. We completed a table top last week and it came up that when we need to pull the plug for the entire network is there a way to disable all routing on our Meraki cores without deleting all the routes? This would help to mitigate the spread laterally across the network if something were to happen. Looking to see if there would be some other way around it or a script that could be run to accomplish this. 

 

Any advice would be appreciated. TIA

 

Adam

Labels:
0 Kudos
4 Replies 4
KarstenI
Kind of a big deal
Kind of a big deal
‎Jul 10 2023 7:04 AM
‎Jul 10 2023 7:04 AM

What about a script that disables all ports that are not infrastructure? For the routing I am not aware of a ways to just disable it, but removing and adding back the SVIs could also be automated with a script. Just make sure you don't remove config that is needed for the infrastructure itself.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Kudos
In response to KarstenI
Adam5
Just browsing
‎Jul 10 2023 8:51 AM
‎Jul 10 2023 8:51 AM

Thanks for the reply. Could be a possibility. We are looking for an overall "Kill Switch" that doesn't kill the config in case of a cyber attack. We could always unplug the cores but it wouldn't help us in our recovery if we are bringing things back online in a systematic way. 

0 Kudos
In response to Adam5
KarstenI
Kind of a big deal
Kind of a big deal
‎Jul 10 2023 11:30 AM
‎Jul 10 2023 11:30 AM

A remotely controlled PDU like the MT40 or something from APC? 

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Jul 10 2023 12:53 PM
‎Jul 10 2023 12:53 PM

This is probably a better use of an ACL.  You can even create an ACL in advance that is a "permit any any", and the procedure will be to change that one "permit" to a "deny".

https://documentation.meraki.com/MS/Other_Topics/Switch_ACL_Operation 

 

An ACL will also allow you to bring up parts of the network as it gets restored (by adding in additional "permit" entries").

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.