IP Geolocation connection Rule
This Rule detects the location of the connecting IP address. It will classify the IP to a country of origin. You can then use the Rule to reject certain countries, or to only allow specific countries to be able to send email to your domain(s).
Blacklisting certain countries
To create a blacklist of countries that will not be allowed to interact with your domain:
- Visit your USS Dashboard and click Products ⟶ Email Security ⟶ Connection Rules.
- Click
to create a new Rule.
- Give the Rule a sensible name, such as "Restricted IP Location - Blacklist", and click
.
- Add a Direction Condition, with the logic set to Matches: Inbound.
- Add a Sender IP Geolocation Condition, with the Match Type set to Matches and the Value set to a list of the countries you wish to block.

- Add a Permanent Reject Final Action, with the Value set to 5.7.1 geoip restriction.
- Make sure that the Active checkbox is enabled, so that your new Rule will start working immediately.
- Click
.
Whitelisting certain countries
To create a whitelist, specifying the only countries that will be allowed to interact with your domain:
- Visit your USS Dashboard and click Products ⟶ Email Security ⟶ Connection Rules.
- Click
to create a new Rule.
- Give the Rule a sensible name, such as "Restricted IP Location - Whitelist", and click
.
- Add a Direction Condition, with the logic set to Matches: Inbound.
- Add a Sender IP Geolocation Condition, with the Match Type set to Does not match and the Value set to a list of the countries you wish to allow.
- Add a Permanent Reject Final Action, with the Value set to 5.7.1 geoip restriction.
- Make sure that the Active checkbox is enabled, so that your new Rule will start working immediately.
- Click
Whitelisting specific domains from a blacklisted country
If you want to allow emails from a specific domain, while still denying emails from that domain's country of origin, you can do so.
- First, create a Blacklist Rule, based on the example above.
- Create a new set of Rule Data, containing the domain you wish to permit.
- Re-open your Blacklist Rule for editing.
- Add a Sender in List Condition, with the Match Type set to Does Not Match and the Condition Value set to the Rule Data you created earlier.