Is there a way to have IPS Geo Protection block based on the IP address in the X-Forwarded header? It appears R77.30 CloudGuard edition is capable of this but I cannot find out whether this option is available on regular gateways.
As far as I know, this isn't supported for CloudGuard gateways either.
It's possible this will be supported in R80.20 since you will be able to use countries in the regular rulebase--will have to check.
Checkout this SK: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk115532&t=1535401279208
Describes what I am talking about but for the cloudguard image.
Ryan St. Germain
- From Mobile
Ah, so it is supported there
As far as I know, this is specific to the CloudGuard images in AWS and Azure, but will confirm.
Thanks for checking it out. We have several websites fronted by cloudflare so we never see the original source address. CloudFlare has geo protection like feature but is is based on blacklisting not white AND it only challenges users not outright blocks them.
Retrieving data ...