Is it possible to restrict connections to IPSEC remote access, so only connection from a specific country will be allowed ?
This thread was automatically locked due to age.
Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.
You could use a blackhole DNAT for this: https://support.sophos.com/support/s/article/KB-000038943?language=en_US
Port 4500 / 500 should be fine, for the unwanted countries.
__________________________________________________________________________________________________________________