Add GEO blocking option in Email security rules - Black/White List
Freshman Member
I wish I have in Black/White List an option for GEOGRAPHY blocking. And block all emails sent from blocked countries.
Comments
-
You can.
Create a group composed from the countries you want to block. Let's call that "Email_Block".
Then configure incoming communications on port 25, 465, 587 to being blocked from the group.0 -
It looks like blocking GEO Group from accessing my network ports.
Will it block emails sent to external hosting and downloaded to my network from there?
I was thinking about Rule creating here:
0 -
Do you have your own mailserver or are you working with something like Office 365? This could only work if you use your own mailserver.
0 -
I have my own mail server.
If I have an IP option in rules GEO option should not be something impossible to add here.0 -
You have to block these ports then in your Policy Control. Now you have a policy From "WAN" to "LAN1", IPv4 Source "Any", IPv4 Destination "mailserver", Service "25, 465, 587".
First create objects → Address, Type Geography and select the countries you wish to allow (you can also work reverse and block only countries, but then you need to create an extra rule with higher priority to block these first). Put them in an address group, let's say GEOALLOW.
Now in case you only want to allow some countries, change your Policy Control rule. Change IPv4 Source "Any" to this object "GEOALLOW"
0
Guru Member
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 141 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.5K Security
- 216 USG FLEX H Series
- 262 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 243 Service & License
- 382 News and Release
- 81 Security Advisories
- 27 Education Center
- 8 [Campaign] Zyxel Network Detective
- 3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight
