Content filtering is a fundamental security control that every UK business should implement, yet it remains surprisingly underutilised. At its core, content filtering controls which websites and online content your employees can access through your business network. It blocks access to malicious websites that distribute malware, prevents visits to phishing sites designed to steal credentials, restricts access to inappropriate or non-productive content, and helps your organisation meet its duty of care and regulatory obligations.
For businesses using Cisco Meraki MX security appliances — one of the most popular cloud-managed firewall platforms for UK SMEs — content filtering is built directly into the appliance and managed through the intuitive Meraki Dashboard. No additional hardware, software, or licences are required beyond your existing Meraki MX subscription. Despite this accessibility, many businesses either do not enable content filtering at all or configure it poorly, leaving significant gaps in their security posture.
This guide walks through the complete process of setting up content filtering on a Meraki MX appliance, from initial planning through to ongoing management, with specific guidance relevant to UK business environments.
Why Content Filtering Matters for UK Businesses
Content filtering serves multiple purposes simultaneously, making it one of the highest-value security controls available to UK businesses.
Malware and Phishing Protection
The majority of malware infections begin with a user visiting a compromised or malicious website. Content filtering blocks access to known malicious domains before the connection is even established, preventing drive-by downloads, exploit kit attacks, and phishing credential harvesting. This operates as a first line of defence — even if a phishing email bypasses your email filter, the content filter can block the user from reaching the malicious website linked within it.
Legal and Regulatory Compliance
UK businesses have a duty of care to their employees and, in some cases, legal obligations to filter internet content. Businesses that provide internet access to the public (cafes, hotels, retail venues) should filter content to prevent access to illegal material. Businesses in regulated sectors may have specific content filtering requirements. Under UK employment law, providing an unfiltered internet connection that facilitates access to illegal or inappropriate content can create legal liability for the employer.
Productivity Management
Whilst productivity monitoring must be balanced with employee privacy and trust, content filtering provides a reasonable baseline control. Blocking access to categories such as gambling, adult content, and social media during working hours is a common and generally accepted practice in UK workplaces, provided employees are informed of the policy.
The UK Government's Cyber Essentials scheme — increasingly required for public sector contracts — includes requirements around secure configuration and malware protection. Whilst content filtering is not explicitly mandated in the Cyber Essentials basic scheme, it is recommended as a supporting control. For Cyber Essentials Plus certification, which involves a hands-on technical audit, having content filtering in place demonstrates a mature security posture and supports compliance with multiple control areas.
Understanding Meraki MX Content Filtering
The Meraki MX appliance provides content filtering through two complementary mechanisms: category-based filtering and URL-based filtering. Understanding both is essential for effective configuration.
Category-Based Filtering
Meraki uses a comprehensive website categorisation database maintained by Cisco Talos, one of the world's largest commercial threat intelligence organisations. Every website is classified into one or more categories — such as "Adult Content," "Gambling," "Malware," "Phishing," "Social Networking," "Streaming Media," and dozens more. You configure your content filter by selecting which categories to block, and the Meraki MX automatically blocks access to any website classified under those categories.
URL-Based Filtering
In addition to category-based filtering, you can create custom lists of specific URLs or domains to block or allow. This is useful for blocking specific sites that are not categorised as you would like, or for whitelisting specific sites that fall within a blocked category but are required for legitimate business purposes. For example, you might block the "Social Networking" category but whitelist LinkedIn because your marketing team needs it for business development.
| Category | Recommended Action | Rationale |
|---|---|---|
| Malware / Phishing | Block (always) | Direct security threat — no legitimate business use |
| Adult Content | Block (always) | Legal liability, workplace appropriateness |
| Gambling | Block | Productivity, potential legal issues |
| Proxy / Anonymiser | Block (always) | Used to bypass content filters — security risk |
| Social Networking | Consider blocking | Productivity — whitelist specific sites if needed |
| Streaming Media | Consider blocking | Bandwidth consumption — may need for business use |
| Online Shopping | Monitor / allow | Low risk, blocking may feel overly restrictive |
| News / Media | Allow | Legitimate business awareness — low risk |
Step-by-Step Configuration Guide
Here is the complete process for configuring content filtering on your Meraki MX appliance through the Meraki Dashboard.
Step 1: Access the Content Filtering Settings
Log into the Meraki Dashboard at dashboard.meraki.com. Navigate to Security & SD-WAN, then select Content Filtering from the left-hand menu. This page displays all content filtering settings for your MX appliance.
Step 2: Configure Category Blocking
The category list displays all available website categories with toggles to block or allow each one. We recommend starting with a conservative approach — block the clearly inappropriate and dangerous categories first (malware, phishing, adult content, gambling, proxy/anonymiser), then gradually expand based on your organisation's policies and needs. Each blocked category takes effect immediately across your entire network.
Step 3: Set Up URL Allow and Block Lists
Below the category settings, you will find fields for custom URL lists. Add any specific domains you wish to block regardless of their category (the block list) and any specific domains you wish to allow despite falling within a blocked category (the allow list). Use domain-level entries rather than full URLs — for example, enter "linkedin.com" rather than "https://www.linkedin.com/feed/".
Step 4: Configure Group Policies
For more granular control, Meraki supports group policies that apply different content filtering rules to different sets of users or devices. For example, your marketing department might need access to social media platforms that are blocked for the rest of the organisation. Create a group policy with the appropriate permissions and assign it to the relevant devices or VLAN.
Step 5: Enable HTTPS Inspection (Optional)
Modern websites overwhelmingly use HTTPS encryption, which can limit the effectiveness of content filtering if inspection is not enabled. Meraki MX supports SSL/TLS inspection, which decrypts HTTPS traffic for inspection before re-encrypting it. This significantly improves filtering accuracy but requires deploying a trusted certificate to all managed devices. For UK businesses, be aware that SSL inspection has privacy implications and should be covered in your acceptable use policy.
Monitoring and Reporting
One of the major advantages of Meraki MX content filtering is the comprehensive reporting available through the Meraki Dashboard. The Security Centre provides visibility into blocked threats, showing which users attempted to access blocked content, which categories were most frequently triggered, and which specific URLs were blocked.
Review these reports regularly — at least monthly. They provide valuable intelligence about your network's security posture and your users' browsing patterns. Frequent blocks in the malware or phishing categories may indicate that your email filtering needs strengthening. Frequent blocks of legitimate business sites suggest your filtering rules need refinement. A sudden spike in proxy/anonymiser blocks may indicate a user attempting to circumvent your filtering — which itself is a security concern worth investigating.
Best Practices for UK Businesses
Based on our experience deploying Meraki content filtering for UK businesses, here are the practices that deliver the best results.
Communicate your policy clearly. Before enabling content filtering, inform all employees about what is being filtered and why. Transparency builds trust and reduces complaints. Include content filtering in your acceptable use policy and ensure all staff acknowledge it.
Start restrictive, then relax. It is easier to whitelist specific sites that users need than to chase down every inappropriate site after deploying a permissive policy. Start by blocking broadly, then create exceptions for legitimate business needs as they arise.
Use group policies wisely. Different departments have different needs. Marketing needs social media access. Finance needs banking sites. IT needs access to technical resources that might fall within blocked categories. Group policies allow you to tailor filtering without compromising security for the wider organisation.
Review and refine regularly. Content filtering is not a set-and-forget control. New websites appear daily, categories evolve, and business needs change. Schedule monthly reviews of your filtering configuration, blocked site reports, and user feedback to keep the system effective and appropriate.
Combine with DNS filtering. For businesses with remote workers connecting outside the office network, consider complementing Meraki MX content filtering with a DNS-based filtering solution like Cisco Umbrella. This extends your content filtering protection to users regardless of their location — critical in the era of hybrid working.
Need Help Configuring Your Meraki MX?
Cloudswitched is a Cisco Meraki partner providing deployment, configuration, and ongoing management for UK businesses. From content filtering and security policies to SD-WAN and multi-site networking, our Meraki-certified engineers ensure your network is secure, compliant, and optimally configured. Get in touch for a network security review.
GET IN TOUCH
CloudSwitched
Centrally located in London, Shoreditch, we offer a range of IT services and solutions to small/medium sized companies.