Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Goeip Exclusion list won't apply on fw base access rule with custom country list

I have a fw access rule with GEOIP filter enable with custom country list instead of using global country lis which is to wide.

I won't allow US on incoming connection, but I want to allow one IP in US.

I created the object and added it to GEOIP, exclusion list.

Still, FW blocks it.

If I add US to my custom list, user can connect.

But adding US to my custom list is ti wide open.

Any idea why it won't take note of the exclusion IP?

Category: Firewall Security Services
Reply

Best Answer

  • CORRECT ANSWER
    TKWITSTKWITS Community Legend ✭✭✭✭✭
    Answer ✓

    Custom GEO lists in Access Rules do not allow for exclusions and take precedence over the global settings.

    So either you use the global settings only, or allow US in the Access Rule GEO list.

Answers

  • sfourniersfournier Newbie ✭

    So as I get it, it is a normal behaviour.

    Tanks for the quick feedback!!

Sign In or Register to comment.