Advisory: Sophos Endpoint "Your connection isn't private" after reboot. Policy settings can be returned to normal. See: KB-000045954 for the latest updates.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Bypass Country Blocking by URL

Is it possible to create exceptions to country blocking based on the destination URL?

This thread was automatically locked due to age.
  • This is under the Firewall > Country Blocking Exceptions tab.  Use the pulldown where its marked and change your selection.

    Also in your Country Blocking, you can change the pulldown next to the country you are blocking.  If you want to block only traffic going TO a country, change the pulldown to 'To'. It will allow traffic coming from that country if you need it.  Otherwise, you can choose 'All' and add these exceptions to the rules.

    OPNSense 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz
    16GB Memory | 500GB SSD HDD | ATT Fiber 1GB
    (Former Sophos UTM Veteran, Former XG Rookie)

  • Amodin answered the question for FQDNs.  I usually only select "From" in Country Blocking as too many good IPs (Amazon, etc.) are in places like China.

    Cheers - Bob

    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • This answered my question. Thank you.