Meraki

Community

About WaterBack

Re: Restricted VPN traffic when MX use it Cellular Interface

by in Security & SD-WAN
‎Mar 12 2019 12:32 PM
2 Kudos
‎Mar 12 2019 12:32 PM
2 Kudos
You are right if the traffic is not part of a VPN tunnel.   But base on the documentation:   When traffic passing through the MX matches a site-to-site VPN route, VPN firewall rules are applied in descending order. VPN traffic is only subject to the site-to-site firewall rules and is never subject to Layer 3 firewall rules. Then, I do not think this is the way to go, but I'm may be in error since I never do that in a MX before. ... View more

Restricted VPN traffic when MX use it Cellular Interface

by in Security & SD-WAN
‎Mar 12 2019 12:02 PM
‎Mar 12 2019 12:02 PM
Hi all,   Is there a way to deny identified traffic that going through the VPN tunnel when the MX used it Cellular interface (USB), but this traffic is normally granted in the VPN tunnel when the MX use it primary WAN1 circuit ?  This is to manage the data package on the LTE service to grant only business critical service. ... View more
© 2025 Cisco Systems, Inc.