Is there any chance that Geolocation will ever be available for use in prefilter rules?
What I would like to do is have a prefilter rule that will exempt certain subnets from undesirable locations - just analyze the traffic and pass onto the ACP, and a second rule with all of the locations that we want to block.
This can be done within the ACP, but the powers that be do not feel comfortable with using Geolocation in allow rules (replacing allow "any" with something like allow "obj-geolocation-allow and obj-geoblock-exclude" (this group is specific subnets included in locations not selected in obj-geolocation-allow)).
