Results 1 to 6 of 6
  1. #1
    Untanglit
    Join Date
    Nov 2016
    Location
    Phoenix, AZ
    Posts
    25

    Default Determining if an IP address is in the US or not

    Hi,

    I want to block non-US ftp access to my network. I added the following rule:
    http://webworldinc.com/non_us.jpg

    and found out it also blocked 71.189.90.25 which is owned by Verizon in California.

    Did I specify it wrong?

    --Ben

  2. #2
    Untangler jcoffin's Avatar
    Join Date
    Aug 2008
    Location
    Sunnyvale, CA
    Posts
    7,181

    Default

    The rule is correct.

    Geo-IP mapping is not exact since corporations will move IP address assigned to them to other physical locations since they broadcast routing. Also even if the owner of the IP is U.S. based, it does not mean the host with the IP is in the U.S.
    Attention: Support and help on the Untangle Forums is provided by
    volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  3. #3
    Untangle Junkie dmorris's Avatar
    Join Date
    Nov 2006
    Location
    San Carlos, CA
    Posts
    17,491

    Default

    Check the reports. Look at the exact session and see how it categorized that IP.
    Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  4. #4
    Untanglit
    Join Date
    Nov 2016
    Location
    Phoenix, AZ
    Posts
    25

    Default

    Ah. In this case the 'client country' was the intranet IP block of 10.x.x.x, designated as '[XL]'. I guess that technically isn't the US.

    So I guess I need to add 'and it isn't an intranet IP block' to the rule. Unfortunately, XL is not one of the listed countries. ?

    --Ben
    Last edited by bconner; 12-29-2017 at 10:49 AM.

  5. #5
    Untanglit
    Join Date
    Nov 2016
    Location
    Phoenix, AZ
    Posts
    25

    Default

    Ah. Just add another filter to pass port 21 traffic originating from 10.x.x.x. Doh.

    --Ben

  6. #6
    Untangle Junkie dmorris's Avatar
    Join Date
    Nov 2006
    Location
    San Carlos, CA
    Posts
    17,491

    Default

    XL is local (which is not US, which is why its blocked)
    Just type in "XL,US" which would mean client country = US or XL
    Last edited by dmorris; 12-29-2017 at 11:25 AM.
    Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2