Secure Mobile Access 100 10.2 Administration Guide

Policies

The Geo IP & Botnet Filter > Policies page is used to view, add, edit, and delete Geo IP and Botnet Filter access policies. Up to a total of 64 Geo IP and Botnet Filter access policies can be created.

Each policy is automatically assigned a different priority with 1 being the highest priority. A policy’s priority determines the order of enforcement, which is identified by the order policies are listed on the Settings page.

  • Botnet Filter policies have a higher priority than Geo IP policies. Geo IP policies are prioritized according to the time they were created with those created first having the higher priority.
  • Botnet Filter policies defined for a single IP address have a higher priority than Botnet Filter policies defined for a subnet, and each type is then prioritized based on the time they were created with those created first having the higher priority.
  • Custom created policies are enforced first, which means if an IP address is listed in the SonicWall Botnet Filter database, but the administrator defines an allow policy for this IP, then access from this IP is allowed.

A policy can be modified by clicking the edit button, but a policy name cannot be modified. A policy can be deleted by clicking the delete button.

To create a new access policy, click the Add policy... button. Two types of policies can be added:

  • Geo IP Policy tab

    A Geo IP policy allows or denies traffic from specified countries. Enter a Policy Name, then select the Countries you want to allow or deny. You can sort countries by continent, just click the drop-down and select the desired continent, to display all the countries within that continent in the Apply Policy To list. You can also select countries directly from the map.

    The map displays selected/deselected countries by color. The deselected countries display gray, while the selected countries display in color. Mouse over a country in the Apply Policy To list and the corresponding country blinks on the map. Use the Zoom tool to zoom in or out on the map. If you do not wish to use the map, hide it by clicking the Map icon to the left of the map.

  • Botnet Policy

    A Botnet Policy allows or denies access from a specified IPv4 IP address or IP address range. Up to 64 policies can be created. Enter a Policy Name, then select an IP address or IP range you want to allow or deny (based on your selection in the Action drop-down.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.