Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
627
Views
2
Helpful
2
Replies

GeoDB Updates file

Go to solution
Knassi
Level 1
Level 1

‎06-08-2023 01:19 PM

Hi,

I downloaded the GeoDB Updates and uploaded it. I have some geolocation rules set to block traffic from certain locations. Now some IPs are being blocked by those rules but the IPs are not from the locations i am blocking. Somehow the FMC sees those IP as coming from banned locations. Anyone seen that before? I want to open the GeoDB  file downloaded and see what's in there. I have not been successful so far. Any help will be appreciated. Thank you

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marius Gunnerud
VIP
VIP

‎06-09-2023 10:08 AM

I have seen this issue a lot over the past couple years.  The only work-around we have found is to white list the source and destination IPs and ports that are being blocked / add ACP rules above the GeoBlock to allow that traffic.  We have had TAC on the case earlier and they cannot do anything as these IPs are automatically fetched (from Talos I believe).

We have boiled the issue down to that some of these subnets are re-allocated to different geographic locations therefore causing the issue.  Not entirely sure if this is an issue with the classification or if the subnets are actually being allocated to new geographic locations.

--
Please remember to select a correct answer and rate helpful posts

View solution in original post

2 Replies 2

Go to solution
Marius Gunnerud
VIP
VIP

‎06-09-2023 10:08 AM

I have seen this issue a lot over the past couple years.  The only work-around we have found is to white list the source and destination IPs and ports that are being blocked / add ACP rules above the GeoBlock to allow that traffic.  We have had TAC on the case earlier and they cannot do anything as these IPs are automatically fetched (from Talos I believe).

We have boiled the issue down to that some of these subnets are re-allocated to different geographic locations therefore causing the issue.  Not entirely sure if this is an issue with the classification or if the subnets are actually being allocated to new geographic locations.

--
Please remember to select a correct answer and rate helpful posts

Go to solution
Knassi
Level 1
Level 1
In response to Marius Gunnerud

‎06-09-2023 11:11 AM

I did that and things are working fine. The TAC submitted didn't yield anything good either. Thank you

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card