SDA having issues syncing over Meraki VPN with AMP Protection on
I would say take a look at this article that I posted some time ago. Don't know if it might be helpful.
as usual: if you block the communication, systems cannot communicate.
You you need to decide: do you want to use the communication or do you want them to not communicate.
Review this article about the needed ports: https://support.quest.com/kb/129799
(most of them are between SDA (or RSA) and the clients, but esp. Port 22 and 8108 are needed between the SDA and the RSA)
Error 10 means the it is not able to contact the Rsync server.
I think it was "Connection refused" the string associated with it.
You might want to go to Settings > Appliance Logs > Download all logs.
Untar the tarball file, and check the /kbox/remote/ folder, there is a Sync_Error_XX log file there, where XX is your RSA's ID (look at the URL when you are at the RSA's Detail page from the SDA).
That log is filled by RSync over SSH routine, it might give you more data.