Under Policies we are using deny by region with the country objects listed. One being China. I have a request for some needed technicians to be able to receive traffic now from one specific IP address in China.
How does one add a single IP exception in this case to allow the traffic? All my searches for exception keep coming back to Threat projection exceptions for already triggered events.
I just want to essentially white list a single IP from China but continue to block the rest of the address scope in the China object.
Thanks for your help.
Solved! Go to Solution.
You will need to create a new rule above the one that blocks China. Just put in that IP you want to allow and tighten down the rest of the parameters you want (zones, users, apps, ports, etc.).
Rules do have the option of negating the addresses, but it's all the addresses in the rule, so you cannot have a single IP negated while leaving China non-negated.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!