This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Block subnet before hitting WAF

Hi,

Does anybody know how/if I can block an IP/Subnet before traffic, originating from that IP/Subnet, arrives at the WAF/Reverse Proxy server?

I created a block rule for one IP address, saying;
From IP - Service ANY - Destination ANY - Action DROP
And I put it on top of the rule set.

And still, when accessing the website that's behind the WAF/Reverse proxy, they get to see the webpage. And it's not browser cache or someting, I actually see the lines appear in the live log of WAF.

When I block the entire country where that IP originates from, yes, than traffic is blocked. But that's not what I want, I want to be able to block traffic from one IP or one Subnet.

Thanks!
Regards,
Erwin.

This thread was automatically locked due to age.

Parents

0 BAlfson over 10 years ago

Erwin, I just learned about this new Allow/Deny capability. Normally, the UTM works in such a way that 'Denied Networks' would take precedence over 'Allowed Networks'. Please tell us if that is indeed the case.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 10 years ago

Erwin, I just learned about this new Allow/Deny capability. Normally, the UTM works in such a way that 'Denied Networks' would take precedence over 'Allowed Networks'. Please tell us if that is indeed the case.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data