Deny Countries to All Ports
Deny whole country CIDR ranges. The CIDR blocks are generated from the Maxmind GeoLite2 Country database and entirely relies on that service being available. You must sign up for the free MaxMind license key. IPset must be supported and loaded by the kernel if you want to block a lot of countries.
- Navigate to Juggernaut Firewall -> Settings -> Login Failure Daemon -> Country Settings.
- Add some countries to Deny countries to all ports.
- If IPV6 is enabled on the server then make sure to check the IPv6 address lookups option so that we also lookup IPv6 networks.
- Click the Update button to save your settings.
- Click the Restart button to restart the firewall and login failure daemon.
Deny Countries to Specific Ports
Deny access from the following countries to specific ports listed in CC_DENY_PORTS_TCP and CC_DENY_PORTS_UDP. You must sign up for the free MaxMind license key.
- Navigate to Juggernaut Firewall -> Settings -> Login Failure Daemon -> Country Settings.
- If IPV6 is enabled on the server then make sure to check the IPv6 address lookups option so that we also lookup IPv6 networks.
- Add some countries to Deny countries to ports.
- Add the ports you want to block to Deny countries to TCP ports AND Deny countries to UDP ports.
- Click the Update button to save your settings.
- Click the Restart button to restart the firewall and login failure daemon.
