Wrong Country on Threat Management
Hello
I see there is threat detail from the island of Mauritius
However this IP comes UP from AS from China. Please clarify. I have blocked China. This is no good because it is allowing traffic from China.
Please provide fix ASAP
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Hi @maurirope
Thanks for posting here.
To understand the situation better, please give us the following info:
1. Which country is the router installed in?
2. What's the hardware version and firmware version of the ER7206?
3. I have blocked China.
>>>Please share the related config screenshots, is it WAN-in ACL? Please also include the selected country/region, cause we have a separate option for HK.
- Copy Link
- Report Inappropriate Content
The geoblock lists are not 100% foolproof and cant be as IPs, BGP, VPNs routing all sorts of things can reorder packets all over the world sometimes. Also, ISP stuff like CGNAT can effect where an IP shows up as, it depends where the public IP terminates and the internal ISP routing begins, as well as websites that attempt to tell you where an IP actually is can also be wrong - my ISP static public always lists as a different country in the UK as thats where their datacentre is.
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
@maurirope This is more misleading now for Hong Kong because it shows as blocked as whole china but it is not, now I understand why I still see the 1 thing hitting my IPS from hong Kong.
Anyway that is a separate issue, the issue was that traffic showing on MAP from Mauritania is actually a Hong Kong ASN ISP
I am unable to upload the screenshot for that right now because I uploaded the hong kong screenshot, that is a bit silly
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 94
Replies: 5
Voters 0
No one has voted for it yet.