Meraki

Community

How to create time based policy

Prashan
Getting noticed
‎Nov 13 2019 8:04 PM
‎Nov 13 2019 8:04 PM

How to create time based policy

Hi Team,

 

I would like create group policy for MR wireless user regarding time based.

 

For the specific time period user should be able to access torrent sites. After that time expires you shouldn't access the torrent sites

 

I have MR42 access point

 

 

0 Kudos
4 Replies 4
pjc
A model citizen
‎Nov 14 2019 12:47 AM
‎Nov 14 2019 12:47 AM

You can create a group policy to allow access to torrent sites (and another policy to block), change the SSiD firewall settings to allow/block L7 rules for Peer to Peer access.  You can turn on SSiD's using SSiD availability and time bands.  But, I don't think you can do both other then having one SSiD available at certain times (which allows torrents), this then turns off and a different SSiD that blocks torrents comes on line when the other goes off within the dashboard itself...

You could run API script(s) to move the clients from the allowed (P2P) policy to a block policy at different times of the day (and then back again), that way the policies would apply to a single SSiD and I think this would do want you want it to do

0 Kudos
MichelRueger
Building a reputation
‎Nov 14 2019 1:06 AM
‎Nov 14 2019 1:06 AM

Hi Prashan

 

You can go to Networkwide --> Group Policies and generate a new Group Policie

put the Scedule option to on and you can select time and day based Policies.

 

Bildschirmfoto 2019-11-14 um 09.47.53.png

 

I hope i could help you with this.

In response to MichelRueger
pjc
A model citizen
‎Nov 14 2019 1:09 AM
‎Nov 14 2019 1:09 AM

@MichelRueger  Yes, good call, I missed the schedule option, but I don't think that'll do what you need as the client can only be in one group policy at a time, so if they try to access the internet when the time schedule is set to off (for the policy they have been assigned), they won't get any access, as the schedule is off.

You need to be able to toggle clints between 2 different policies,....Sadly, I think API scripts is the only way to be able to do that

 

Scrub above, testing shows that when the time schedule is off for the policy (i.e. that allows P2P) then the client is assigned 'normal' access (no policy) and the default settings (i.e. no P2P) for the SSiD is applied, so @MichelRueger , yes your solution will work

0 Kudos
In response to pjc
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Nov 14 2019 2:12 AM
‎Nov 14 2019 2:12 AM

@MichelRueger  is on the money.  During the scheudle the group policy will be applied.  When the schedule is not in effect the global firewall rules will take affect.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.