Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 9 replies
  • Subscribers 5 subscribers
  • Views 2795 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Does country blocking work for 'from' only?

dswartz

With my old firewall, my mail server in particular gets bombarded from china and russia in particular, so I'd like to switch to UTM9.  I wanted to allow LAN to go to blocked countries, but not allow unsolicited inbound traffic.  It seems like if I block, say, Russian Federation for 'from' only, 'iptables -L -n' shows the exact same output as 'off'.  If I set 'to' or 'all' those seem to be identical to each other as well.  Am I missing something?  Thanks!



This thread was automatically locked due to age.
Parents
  • 0

    Hi dswatz,

    I use this all the time, and even on a customers UTM, where the GEOIP DB was not working correctly and even banned its' own ip.

    so in my opinion it does work.

    are you looking on the inbound tables only?

    XG & UTM Architect (Systems: XG v18 & UTM 9.7 - Virtual, HW & SW)
    Curious enough to take it apart, skilled enough to put it back together, Clever enough to hide the extra parts when I'm Done!

  • 0 in reply to Argo

    I don't think so, no.  I was listing the rules via 'iptables -L -n'.  I assume the filter table is being used by geo ip?  It is on other distros I've used, and when doing 'all' or 'out' that is where the rules show up.  What do your rules look like when doing 'from'?

Reply
  • 0 in reply to Argo

    I don't think so, no.  I was listing the rules via 'iptables -L -n'.  I assume the filter table is being used by geo ip?  It is on other distros I've used, and when doing 'all' or 'out' that is where the rules show up.  What do your rules look like when doing 'from'?

Children
No Data
Unfiltered HTML