GEOIP, not blocking?

Started by cranky, April 03, 2021, 02:28:40 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
April 03, 2021, 02:28:40 PM
So i setup Maxmind's GEOIP and it imported all the ranges successfully.
I made an alias that has Russia selected (effectivly a block all in Russia?)
I then added a rule to block all traffic from that geoip alias.
I expected that i could not access any russian sites, but i can still freely access it.

What did i do wrong in my process?
April 04, 2021, 04:27:01 AM #1
Nothing, GEOIP blocks them from your device, not you from accessing them. I run a webserver, you can only access it from about 5 countries, the rest are blocked.
OPNsense 24.7 - Qotom Q355G4 - ISP - Squirrel 1Gbps.

Team Rebellion Member
April 04, 2021, 01:42:05 PM #2
I added a GEOIp block rule (floating) on my LAN, VLAN, and WAN interfaces with any source and it blocks everything...including outbound.  I thought outbound might be equally useful for malware ignoring that malware is hosted globally.  It does stop me when I click a sketchy result in a google search though.
HP T730/AMD  RX-427BB/8GB/500GB SSD
HP NC365T 4-PORT
April 04, 2021, 01:45:59 PM #3
True, had not thought about adding them there, then again I do access some sites in zones that are blocked for incoming so it could get a bit complicated.
OPNsense 24.7 - Qotom Q355G4 - ISP - Squirrel 1Gbps.

Team Rebellion Member
Print
Go Up Pages1
User actions