To test this feature, visit your live site.

A1 Region Code

I want to block inbound traffic coming from proxies and VPN services, i.e. services such as NordVPN and Hoxx.

I barely knew this existed, but there is a region code "A1" for Anonymous Proxy. https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFFCA0

So i created a rule, from "any" to "any", source "A1", destination "any", any app any service, deny, and put it at the top, and committed.

I was unable to block the traffic, testing a client coming through NordVPN, TunnelBear, Hoxx, etc.

The rule is not hit, 0 uses.

Am I misunderstanding the point of this A1 list?

Thanks.

2 comments

Comments (2)

Reaper

Apr 17

No you are not, but I'm also not sure how "current" this region is

I'd create an application filter that matches the desired behavior, and then create a block rule at the top

CyberforceZero

Apr 19

Replying to

Thanks. But I am trying to filter inbound at the firewall. Therefore the traffic is out of the tunnel at that point, the only way the firewall would know it came thru a tunnel is the traffic's source IP address. I am asking support about this code, you may be right, I don't think it's used very often and may not be maintained.

Forum: Forum