Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Firewall SD-WAN Traffic on MX65 or MX68?

Solved
j_e_m_67
Here to help
‎Mar 7 2024 12:25 PM
‎Mar 7 2024 12:25 PM

Firewall SD-WAN Traffic on MX65 or MX68?

I tried using the Firewall but doesn't match any SD WAN traffic, not seeing any hits. I could do this on Velocloud so not sure how this works on Meraki. I couldn't find documentation on anything related to firewalling SD WAN traffic. Thanks for any help!

 

I will elaborate, I have SD WAN configured and is working fine. I would like to block certain traffic from being allowed over SD WAN from one of the spoke sites to the Hub. 

Labels:
0 Kudos
Subscribe
1 Accepted Solution
Brash
Kind of a big deal
Kind of a big deal
‎Mar 7 2024 12:53 PM
‎Mar 7 2024 12:53 PM

L3 firewall rules don't apply so Auto-VPN traffic. You instead need to configure site-to-site VPN firewall rules (which are org wide)

https://documentation.meraki.com/MX/Site-to-site_VPN/Site-to-site_VPN_Firewall_Rule_Behavior

View solution in original post

Subscribe
4 Replies 4
alemabrahao
Kind of a big deal
Kind of a big deal
‎Mar 7 2024 12:38 PM
‎Mar 7 2024 12:38 PM

The SD-WAN will work on any MX model.

 

https://documentation.meraki.com/Architectures_and_Best_Practices/Cisco_Meraki_Best_Practice_Design/...

 

https://meraki.cisco.com/product-collateral/mx-family-datasheet/?file

 

https://documentation.meraki.com/General_Administration/Licensing/Meraki_MX_Security_and_SD-WAN_Lice...

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
In response to alemabrahao
alemabrahao
Kind of a big deal
Kind of a big deal
‎Mar 7 2024 12:41 PM
‎Mar 7 2024 12:41 PM

Take a look at this article.

 

https://meraki.cisco.com/blog/2018/07/sd-wan/

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
Brash
Kind of a big deal
Kind of a big deal
‎Mar 7 2024 12:53 PM
‎Mar 7 2024 12:53 PM

L3 firewall rules don't apply so Auto-VPN traffic. You instead need to configure site-to-site VPN firewall rules (which are org wide)

https://documentation.meraki.com/MX/Site-to-site_VPN/Site-to-site_VPN_Firewall_Rule_Behavior

Subscribe
j_e_m_67
Here to help
‎Mar 7 2024 12:58 PM
‎Mar 7 2024 12:58 PM

Thanks Brash, that is what I was needing!

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.