Rule doesn't apply

[AdrianOficial]

geoip-shell status:

geoip-shell v0.7.2

Firewall backend: iptables IP lists source: ipdeny Geoblocking rules applied to network interfaces: enp1s0f0

Cron system service: ✔ Update cron job: ✔ Update schedule: '16 4 * * *' Last successful update: May-22-2025 15:51:15 Persistence cron job: ✔ Automatic backup of IP lists: On

inbound geoblocking: Mode: blacklist Country codes: DE VN GB RU ID CO JP CN NO US SE NL ✔ IP families: ipv4 ipv6 ✔

Allowed IPs (includes link-local IPs, trusted IPs, LAN IPs): ipv4: None ipv6: None

Protocols: tcp: Geoblocking all destination ports udp: Geoblocking all destination ports

Geoblocking firewall chain (ipv4): enabled ✔ Geoblocking firewall chain (ipv6): enabled ✔

outbound geoblocking: Mode: disable

No problems detected.

geoip-shell configure -m blacklist -u ipdeny -c "DE VN GB RU ID CO JP CN NO US SE NL" -r RO -i enp1s0f0

I activated blacklist to those countries, but traffic from US still enter in udp. I did something wrong?

[friendly-bits]

Hi

First, geoip data is not 100% reliable. So either ipdeny lists may not include certain IP addresses, or the software you are using to check where connections are coming from may be reporting some of the locations incorrectly. If some connections from some addresses are filtered and some are not then this is most likely the case. You can try using the MaxMind ip lists source, typically their data is more accurate (but not 100% accurate either).

If no connections are filtered at all then possibly there is a configuration issue - please describe your network layout, and make sure that enp1s0f0 is indeed the correct network interface for geoblocking.