How to block country or certain IP address from trying Cisco VPN service

Hi,

Configure a non-HTTP based business application rule, which defines :

Source Host- Country Host

Hosted Server host - WAN

Hosted Address - WAN address

Protected Zone : LAN

Protected Application Server: Any dummy IP address to map/blackhole the IP requests

Port Forwarding: Define all the ports used by Cisco VPN services.

This will map all the requests hitting on WAN address using the Cisco VPN ports from a specific country shall be mapped to a dummy IP address.

Thanks

Hi Sachigurung,

This is a work around instead of proper Country blocking.

I have a country block rule enable but it doesn't seem to work.

Is there a fix in the future?

Thank you.

Hi,

Yes, our Development team is working a fix to this issue. It will be made available soon.

Thanks

Hi,

Yes, our Development team is working a fix to this issue. It will be made available soon.

Thanks