GeoIP Blocking

Block traffic from selected geographic regions to enforce compliance and reduce attack surface.

Tools Used

OPNsense Firewall
Firewall Aliases (GeoIP)
Firewall Rules (WAN → LAN)

Steps Taken

Created GeoIP alias blocking selected countries.
Applied alias in WAN rule to block inbound traffic.
Documented configuration.

Screenshot: GeoIP Alias

GeoIP alias showing blocked countries — GeoIP alias configured with blocked countries.

Screenshot: WAN Rule with GeoIP

WAN rule applying GeoIP alias to block traffic.

Outcome

GeoIP blocking configured. Traffic from high-risk regions will be denied, trusted regions remain allowed. This demonstrates compliance and operational maturity.