[ATP/FLEX] How to block IP traffic by Geo IP on Nebula
Zyxel_James
Posts: 663 
Zyxel Employee
Zyxel Employee
Nebula Control Center supports Geo IP that allows you to block internet traffic coming in from a specific region or country that is usually very suspicious/well-known to be the origin of malicious attacks. On the contrary, you can also only allow internet traffic coming in from your country.
Configure Steps
Go to Configure > Firewall > Security policy, create a new rule
- Input a name for the security rule
- Select Deny as Action
- Select the suspicious/malicious country as Source
- Select Any as Destination.
After the Geo IP security rule is configured, requests from that country to your device or your internal networks will be blocked. You can enable the log button to monitor the denied actions.
To look up the Geo IP database version, please connect to ssh and input “show geo-ip database version"
To look up the country of the IP address, please connect to ssh and input “show geo-ip geography address x.x.x.x”
Tagged:
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 145 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 239 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 384 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight