So i setup Maxmind's GEOIP and it imported all the ranges successfully.
I made an alias that has Russia selected (effectivly a block all in Russia?)
I then added a rule to block all traffic from that geoip alias.
I expected that i could not access any russian sites, but i can still freely access it.
What did i do wrong in my process?
Nothing, GEOIP blocks them from your device, not you from accessing them. I run a webserver, you can only access it from about 5 countries, the rest are blocked.
I added a GEOIp block rule (floating) on my LAN, VLAN, and WAN interfaces with any source and it blocks everything...including outbound. I thought outbound might be equally useful for malware ignoring that malware is hosted globally. It does stop me when I click a sketchy result in a google search though.
True, had not thought about adding them there, then again I do access some sites in zones that are blocked for incoming so it could get a bit complicated.