How can this be?   Response from support: The Inbound Firewall rule for the Non meraki VPN Peer site to site  tunnel apparently is still a feature request that needs to be completed. It is not functional at the moment, unfortunately even though it shows up on the dashboard. I would say the best option at the moment is to put in a feature request by Making a Wish (link below) and also putting an ACL on the other end blocking traffic going out coming to your meraki end.  A workaround could be to put ACL from the other end of the tunnel ... View more

I've had an MX for 3.5 years and I don't think they have been implementing many features that have been commonly requested lately. https://meraki.cisco.com/blog/ is a good indication of that.  Other products seem to be getting more attention. ... View more

As far as I can tell there isn't a way to whitelist an IP in the Threat Protection (Snort IPS/IDS).  What are you doing when it comes to performing vulnerability scans on your network because of this limitation?  Do you have a workaround?  I'm only using the MX line of Meraki products. ... View more