Content and Security Filtering on the MX allows administrators to restrict user access to websites and content on the Internet, as well as protect the network from malicious software.
In full-tunnel site-to-site VPN scenarios, all Internet traffic from the remote sites passes through the full-tunnel concentrator before being sent out to the Internet. This article describes how content and security filtering are applied to Internet traffic in full-tunnel VPN scenarios.
There are a number of different ways on the MX to use content filtering to block or allow access to websites. In circumstances where different filtering options contradict one another, the following priority applies (from highest to lowest priority)
Whitelisting can be used to override configured Content filtering rules on the Cisco MX, however there are cases in which an administrator might have to take additional steps to ensure that a whitelisted website displays correctly.
This article focuses on the Content Filtering feature of the Meraki MX Security Appliance. This feature is important because it can be utilized to control the type of content can be reached on the Internet. This is key when an administrator would like to limit the type of content his/her clients can reach.
Meraki devices allow for filtering of websites by URL, providing both a way to block and whitelist specific URL or an entire domain. However when filtering by URL it is important to note that while you can whitelist a child address and block the parent address it is not currently possible to whitelist a parent address an block a child address.
This article addresses the Web search filtering feature available on the Cisco Meraki security appliance and how this feature could affect other Google applications.
