For that create FQDN host as shown below URL IPĬlick on “ ADD exclusion” in country blocked firewall rule and add this “ FQDN host” in destination as shown below Exclusionīy this way we can exclude certain website from country based firewall rule. The company provides a Geo IP solution to determine an IPs country, region. So we need to create exception in the same rule to allow traffic only for the above “URL”. IP2Location provides geographical information and data about IP addresses. Destination FW ruleīut i want access to one of the russian websites, in this case i need access to this website Please note i have added russian federation in destination, since i want to block access to that destination country. Suppose i have created firewall rule to block all traffic to russian federation as shown in image below. Legitimate website getting blocked by country based firewall rule: Now all russian IP address will be bocked. The firewall rule should be on the top and parameters of the firewall rule should be as follows.Ĭlick on Rules and Policies > and then click on ADD firewall rule Firewall Rule We need to create firewall rule to block IP address. So as per the result, IP address belongs to russia. For that, i will go to max mind database and search for that specific IP address: IP address I want to block all countries except my own country. I need to identify IP address of that country. If youre willing to spend a bit of money, MaxMind and IP2Location will sell you their database. Suppose if i need to block “ 31.23.45.67” and their whole country for both inbound and outbound communication through firewall. In case if you follow different web site and blocked some wrong country, firewall will block legitimate IP address. So based on this result, you need to create firewall accordingly. Here is the URL for the max mind database: Sophos XG firewall will use maxmind database to predict the IP address and its origin country. You confirmed that IP address belongs to china country through this website. In some scenarios we might come up with issue like this, suppose you want to block chinese IP address but firewall is actually not blocking it. Here in this article we will discuss how to unblock the IP address which are blocked with reason “Country Blocking”. JIP Address Blocked By Country Based Firewall Rule
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |