Default action setting?
-
Is there a default action setting? I only saw this note after I already did it:
It's also not recommended to block the 'world', instead consider rules to 'Permit' traffic from selected Countries only.
I only did it that way because I didn't see a default action setting.
-
ping
-
@peterlecki I am not sure I understand completely but when you create a geo list the default is Disabled, it says so next to the List Action dropdown.
The point of the comment is that instead of creating IP tables in memory to block 95% of the world, make a default block rule and only allow 5% of the world.
Often what I do is make the list Alias Native which only creates an alias. Then I can use that alias in whatever NAT rule or firewall rule I want.