Same here, It’s a fresh install of IpFire 2.25 core 144,
I selected all the countries,
confirmed that “enable GeiIP based blocking” is set
rebooted (i havent found how to simply restart the firewall from the console)
…this has now effect…
As I already written It is normal that a NAT Rule will logged even if they came from a blocked coutry because NAT (Network Address Translation) is running before the Firewall. The traffic will still blocked in the Firewall even if they listed as NAT.