How to Configure a Security Policy to Use a Region

How to Configure a Security Policy to Use a Region

Created On 09/25/18 17:46 PM - Last Modified 04/20/20 23:58 PM



This document describes how to create a security policy to use a region instead of using an IP address. This can be done in both source address and destination address fields. Traffic can be blocked or allowed based on the region's name mentioned on the security policy.


Create a policy and add the source or destination address to the policy.

  1. Navigate to Policies > Security.
  2. Click Add to bring up the Security Policy Rule dialog.
  3. Under the Source (or Destination) tab, add the address by clicking Add and click regions to select a country.
    source address.JPG
  4. Select either pre-defined region or custom region, as shown below
    • Pre-defined region
      Select a region. After selecting a region, additional IP addresses can be added by clicking on Add.
      Selected country.JPG
    • Custom region
      Enter a Name and click "Add" to add IP addresses, as desired. The following screenshot shows the region name as "ABC" and the associated IP address as
      custom region.JPG
      The custom region appears under the "Address" area. In this example, the region was configured for the Source section of the security policy:
      custom sec2.JPG

owner: sbabu

  • Print
  • Copy Link

Choose Language