by adrien » Apr 13 16 5:55 pm
Hi Bruce
the lists in Global data, are just lists which can be used for anything. You need to have some policy which uses that list for that purpose in order for that list to affect what IPs can connect.
Do you want to block that IP to everything (in which case just black hole it in Extended networking) or just some services? To block IPs from web access, you can use a web access rule, which would look something like:
Action: Deny
Who; everyone
Where: Select "only those IPs specified", then click the new item button, choose "Match against data list", then select your list"
What: everything
When: always
Then this rule will deny access to web for any IP in your list.
If you want to block other services, you would probably add a flow-chart policy (there is a sample one for TCP service: ClientConnect) which checks Session.ClientIp in that list, and if it matches disconnect the client.
Regards
Adrien