This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Country blocking exception not working

I'm running Firmware version: 9.303-2. I have Country Blocking turned on to some  countries, one of which is Netherlands.

When I try to go to: Yellow Bricks

I get this error:
Content blocked
While trying to retrieve the URL: Yellow Bricks
The content is blocked due to the following condition:
The URL you have requested matches a forbidden Country. If you think this is wrong, please contact your administrator.
Country: Netherlands

I went to "Country Blocking Exceptions" and created a an exception called "Whitelist"

It says its set to:

skip blocking of these countries:
    [Netherlands] Netherlands
for traffic going to these destination networks:
    Whitelist 1
    Whitelist 2
    Whitelist 3
Using these services:
    Any

For the three networks, I've tried three things:

Name: Whitelist 1
Type: DNS Host
Hostname: Yellow Bricks


Name: Whitelist 2
Type: DNS Host
Hostname: yellow-bricks.com


Name: Whitelist 3
Type: Network
IPV4 address: 109.237.219.143 /32


None of them work. 

If I tell the country blocking list to allow Netherlands, it lets me access the site.


Any ideas?

Thanks!

Arch


This thread was automatically locked due to age.
Parents
  • Hi, Arch and welcome to the User BB!

    Please click on [Go Advanced] below and attach pictures of the three network definitions all open in Edit with 'Advanced' settings visible.

    What's the reason for blocking traffic to the Netherlands?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • Hi, Arch and welcome to the User BB!

    Please click on [Go Advanced] below and attach pictures of the three network definitions all open in Edit with 'Advanced' settings visible.

    What's the reason for blocking traffic to the Netherlands?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • Hello Bob, 

     

    Do you have a link that will show the security features available for the Sophos SG 230s, when purchasing only the 'network protection' license. 

    I understand I will have GEO Country blocking available to be me. What else? Do you have a Sophos link I could get from you? 

  • I think this is what you want, Timothy: Sophos UTM Network Protection Factsheet.

    Just a comment about your initial configuration - I've seen very clunky, difficult-to-maintain UTM configurations done by a talented CCIE.  WebAdmin is an elegant, powerful tool, but it works differently than other brands.  Sophos Sales can provide you with names of experienced Solution Partners in your area (as a moderator, I can see the IP from which you posted).

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA