Action | Address Type | Profile Limitations |
Pass | IPv4 only | Not supported for HTTP Turbo, RADIUS. |
Deny | IPv4 only | Not supported for HTTP Turbo, RADIUS. |
Redirect | IPv4 only | Not supported for HTTP Turbo, RADIUS, FTP, TCP, TCPS, UDP. |
Send 403 Forbidden | IPv4 only | Not supported for HTTP Turbo, RADIUS, FTP, TCP, TCPS, UDP. |
Settings | Guidelines |
Name | Configuration name. Valid characters are A-Z, a-z, 0-9, _, and -. No spaces. After you initially save the configuration, you cannot edit the name. |
Log | Enable/disable logging. |
Action | • Pass—Allow the traffic. • Deny—Drop the traffic. • Redirect—Send a redirect. You specify the redirect URL on the profile configuration page. • Send 403 Forbidden—Send the HTTP Response code 403. Note: Layer 4 and TCPS virtual servers do not support Redirect or Send 403 Forbidden. If you apply an Geo IP configuration that uses these options to a Layer 4 or TCPS virtual server, FortiADC logs the action as Redirect or Send 403 Forbidden, but in fact denies the traffic. |
Severity | The severity to apply to the event. Severity is useful when you filter and sort logs: • Low • Medium • High |
Status | Enable/disable the configuration. |
Member | |
Country | Select a geolocation object. The list includes countries as well as selections for anonymous proxies and satellite providers. |
Settings | Guidelines |
Name | Configuration name. Valid characters are A-Z, a-z, 0-9, _, and -. No spaces. After you initially save the configuration, you cannot edit the name. |
Description | A string to describe the purpose of the configuration, to help you and other administrators more easily identify its use. |
Status | Enable/disable the exception. You might have occasion to toggle the exception off and on. |
Member | |
IP Subnet | Specify the IP address and CIDR-formatted subnet mask, separated by a forward slash ( / ), such as 192.0.2.0/24. Dotted quad formatted subnet masks are not accepted. IPv6 addresses are not supported. |