Port-Forwarding and GeoIP Blocking


I’m running a Plex Media Server on a Synology NAS (Port 32400). To reach this media server I’ve set up a port forwarding rule from RED to the server’s IP address and port 32400.

This works so far, but I needed to remove GeoIP blocking for Ireland, too. This is where Amazon hosts its cloud servers.

Question: can I still check all countries in GeoIP (including Ireland) to be blocked (exception is Germany) and add an additonal FW rule before the new DNAT rule to allow access from Ireland AND from Amazon cloud servers?


why not!

Always the first matching rule will be used and the rules chain will be left after these rule.

Rules are you decision - so make it work!

ps: iptables firewall basics :wink: