Configuring Geolocation addresses
You create Geolocation configuration objects for the locations that you want to match in the Global ACL rulebase. Geolocation addresses include countries as well as anonymous proxies and satellite providers.
Information about packets denied by Global ACL Geolocation rules is reported in the following graphs and reports:
• Graphs (Monitor > ACL Drops > Layer 3, Monitor > Layer 3 > Address Denied)
• Executive Summary dashboard (Log & Report > Report Browse > Executive Summary)
• Reports (Log & Report > Report Configuration > Report Configuration)
Before you begin:
• You must have Read-Write permission for Global Settings.
• You should know the Geolocation Policy setting on the Global Settings > Settings configuration page. In the Global ACL, the action for Geolocation source addresses can only be one of Deny or Accept, depending on the Global Settings > Settings option. Knowing the setting for your deployment informs the geolocation addresses you create.
To configure Geolocation addresses:
1. Go to Global Settings > Address > Address Config.
2. Click Add to display the configuration editor.
3. Complete the configuration as described in
Table 23.
4. Save the configuration.
Table 23: Geolocation address configuration
Settings | Guidelines |
Name | Configuration name. Must not contain spaces. |
Type | Select Geolocation to create an entry for a location, anonymous proxy, or satellite provider. |
Geolocation | Select a location, anonymous proxy, or satellite provider. |