The exceptions in Geo Policy cannot be used to explicitly block traffic. If you really want to do this with Geo Policy in the SmartConsole it will be clumsy but I'd suggest this:
1) Add the country you wish to block (India) to Policy for Specific Countries set for "From Country" with an action of Block.
2) In the Geo Policy exceptions explicitly add exceptions for the Destinations and Services that you want the subject country to be able to access. Note that you can only do this using IP addresses and port numbers, and not by country name.
As you can see, not ideal. What might be easier on R80.10 gateway and earlier is if you have SecureXL enabled on your gateway, create a new fw samp rate-limiting rule matching the country, destination IP, and port number you wish to block and assign an allowed packet rate of zero. This is done from the gateway command line in expert mode.
Better yet, if you have R80.20+ for both management and gateway, you can leverage the new Updatable Objects which include Geo Country Objects. In that case you can leverage those Geo Objects directly in your main policy layers and explicitly permit or deny whatever traffic you want by country, which is much more flexible than clumsily trying to use Geo Policy for that purpose. With R80.20+ Geo Objects you could just add a rule right at the top of the Firewall/Network policy layer like this:
Src: India Dst: Server(s) Service: Port(s) Action: Drop Track:Log
New 2-day Live "Max Power" Series Course Now Available:
"Gateway Performance Optimization R81.20" at maxpowerfirewalls.com