Geoblocker issues from WAN side
Hello, we are experiencing a few potential issues with Geoblocker. I thought I would run them by the forum before opening a support ticket. We are running an M370 with firmware version 12.5.3.B621090.
I have created a separate Geolocation action for an incoming proxy, which is for incoming requests to our on-prem webserver. The proxy is configured to block all countries from visiting our site except the United States and Canada.
The first issue is that when attempting to visit our site from a blocked country, the would be visitor receives the same Watchguard Geoblocker message that users on the LAN see when attempting to visit a blocked location on the WAN, except the reason for blocking says "Blocked Country: [United States]. Is this how Geoblocker is supposed to function from the WAN side? I had never noticed this before, I just figured the connection attempt would return a 404 error in the external person's browser. Basically, anyone from Russia, China, etc that tries to access our site gets this message and can see that we are using Watchguard.
The second issue is that some traffic from US based connections, particularly T-Mobile USA are being blocked when trying to access our site, getting the same message. We loan out T-Mobile hotspots to our library patrons and some of them do this. My T-Mobile smartphone data connection gets blocked by the incoming proxy. All IP are assigned by DHCP from T-Mobile's network and geolocation lookups list them as US based.