Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
mtsi
New Contributor

geo blocking

Hello,

I would like to know what is wrong with this rule, it doesn't work at all, attacks are still coming from the countries that I have added to this rule. Thank you in advance for any suggestions.

 

1.png3.png2.png

1 REPLY 1
adimailig
Staff
Staff

Hi @mtsi ,

Are you blocking traffic passing through the Fortigate? Or are you blocking traffic destined to the Fortigate IP?

If you are blocking traffic passing through the Fortigate, Firewall Policy is effective.
However, if you need to block traffic destined to Fortigate IP, you need to configure Local-in-Policy.
https://docs.fortinet.com/document/fortigate/7.4.4/administration-guide/363127/local-in-policy

Related documentation :
https://community.fortinet.com/t5/Support-Forum/Fortigate-Firewall-policy-vs-local-in-policy/td-p/31...


Best Regards,

Arnold Dimailig
TAC Engineer
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors