![]() (Optional) In the Description text box, type a description of the action.If this is a new action, in the Name text box, type the name of the action.Geolocation action settings in Policy Manager Geolocation action settings in Fireware Web UI Or, to edit an action, select the action name and click Edit. To create a new Geolocation action, click Add.In Fireware 12.2.x and lower, only one set of Geolocation settings is available. You can configure Geolocation actions in Fireware 12.3 or higher. For example, you could configure an SMTP policy to use a Geolocation action that blocks fewer countries than the Geolocation action you use for other policies. If you want to use different Geolocation settings for different types of traffic, you can configure additional Geolocation actions and apply them to your policies. Select the Enable Geolocation check box.Ī Geolocation action is a set of settings that contains a list of blocked countries and exceptions that specify any sites you never want to block.īy default, all policies are initially configured to use the Global Geolocation action.Select Subscription Services > Geolocation.To configure automatic updates, see Configure the Geolocation Update Server. ![]() When you enable Geolocation, a warning message appears if automatic updates are disabled for the Geolocation database. In Fireware 12.3 or higher, all policies are initially configured to use the default Global action automatically. When you enable the Geolocation subscription service, Geolocation is enabled automatically for all policies. To look up the geolocation of an IP address, from Fireware Web UI select Dashboard > Geolocation > Lookup. For more information, see Geolocation Dashboard. ![]() A site that is hosted in one country may include content that is hosted elsewhere. If your internal network or FireCluster configuration uses IP addresses outside the reserved private IP address ranges defined in RFC 1918, RFC 5737, or RFC 8190, look up the geolocation of the IP addresses you use before you block a country.īefore you configure Geolocation to block a country, make sure to evaluate the geographic location of sites that users and servers on your network must connect to. If you block connections to a country, the Firebox does not drop existing connections to that country. The Geolocation settings apply only to new connections. When you enable Geolocation or change the countries to block, the Firebox blocks new incoming and outgoing connections to or from sites located in the specified countries. To use Geolocation, the Firebox must run Fireware v11.12 or higher and must have a feature key that enables the RED subscription service. The Geolocation subscription service uses a database of IP addresses and countries to identify the geographic location of connections through the Firebox.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |