Applies To: Cloud-managed Fireboxes
Geolocation is a security service that enables the Firebox to detect the geographic locations of connections to and from your network. For cloud-managed Fireboxes, you can enable and configure Geolocation to block access to and from specific locations.
Add a Geolocation Action
The default Geolocation action does not block any countries. You can configure multiple Geolocation actions and assign a specific action to each policy.
For the Geolocation service to apply to traffic through the Firebox, it must also be enabled in firewall policies. For information about policy settings, go to Configure Security Services in a Firewall Policy.
To add a geolocation action:
- Select Configure > Devices.
- Select a cloud-managed Firebox.
Status and settings for the selected Firebox appear. - Select Device Configuration.
The Device Configuration page opens and shows the WatchGuard Cloud Security Services. - Click the Geolocation tile.
The Geolocation page opens.
- Click Add Action.
The Add Action page opens with all countries allowed by default for the action.
- In the Name text box, type a name for the action.
- To block a country with the map, click that country on the map. Click the country again to return it to allowed.
Allowed countries appear gray; blocked countries appear red.
- To block a country from the countries list, select the check box next to that country in the list. Select the check box again to return the country to allowed.
A green check mark indicates a country is allowed; a red X indicates a country is blocked.
- Click Save.
To delete an existing action, on the Geolocation page, click
in the row for the action you want to delete.