Situation: The client has Paloalto firewall block all foreign counties. However, they may want to allow to access foreign countries’ website.
Resolution: Add those foreign countries’ IP addresses to the block list exception. In this example, we will configure a rang IP addresses as a group.
- Go to Objects>Regions, create a group name, USA-custom in our example and add the IP rang, 141.188.0.0-141.191.255.255 in our example.
2. Go to Policy>Security, select Outbound Blocked countries. add the group name we created in Objects, USA-custom in our example.
3. Run Commit to save the settings.
