With our addition of Geo-location capabilities you can now use the Firewall application to block traffic coming from foreign countries or going to foreign countries. To block traffic coming from a certain foreign country or countries we can achieve this goal with a simple Firewall rule.
- Go to the "Apps" view and then click the Firewall application.
- Click on the Rules tab and then the Add button to create a new firewall rule.
- Give the new rule a description that helps you identify the rule in the future, then click the Add button to add a condition to your firewall rule.
- To block traffic coming from a foreign country/countries you would select the "Client Country is" condition and then select the country or countries you want to block from the pre-populated list by clicking in to the Value field. In this example we are blocking all traffic coming from China:
To block traffic coming from your local network going to certain foreign countries we follow the same steps as described above and we just change the firewall rule condition to be "Server Country is" as seen in this screenshot:
Something to keep in mind when blocking outbound traffic destined for certain countries if you create a firewall rule to block all non U.S. traffic you will block your local LAN's traffic as it will never show a country in that traffic.