Block a Country with my Cisco Router or Firewall
Hi everyone. Starting this week, every Wednesday we are going to highlight a special security or wireless blog to round out our Borderless Networks theme. Today, we have a real treat for you with this security blog by Panos Kapanakis. Here’s a nugget to pique your interest. Use the link to click through for more.
We are often asked by customers about how they can prevent traffic from a certain country (let’s say country X) from entering their network. The motivations for doing this could vary. Sometimes a company does not do business with all countries in the world; therefore, the company doesn’t need to be accessible from all countries. Other times it is an issue of trust and security, where an administrator may not want to allow country X to enter their infrastructure. Finally, there are cases where country X has often been incriminated with malicious activity, so an administrator may want to block country X when there is no need for the organization to interact with this country. In this document I present a methodology on how to write a tool that provides the configuration lines to block country X, using your IOS router or ASA/ASASM firewall.