Hi community, we have this issue currently investigated (not with Cisco, but internally as we are a Cisco partner) Meraki MX uses the same kind of security intelligence sources as lets say an FTD (Cisco Thalos, Snort,etc,..) , and after discussed this with our senior engineers we believe Meraki firewalls should have the latest updates installed and so the latest Snort-definitions. See this for reference https://www.snort.org/advisories/talos-rules-2021-12-11 It doesn't seem SSL inspection is necessary, but layer 7 application-based policy should do for IPS. Also, I would personally recommend to restrict LDAP, DNS traffic to a bare minimum so it's tightened to what you really need (ex: DNS-server can reach outside, but rest of the network is more limited) General security advisory.. Hope this helps Kind regards
... View more
