GeoIP Location

GeoIP Location offers either a Allow List or a Deny List.

Note: it is not possible, nor is it needed, to have a GeoIP Allow List and Deny List at the same time. Such is never needed...just think about it...

• If the Allow List is used, and 1 or more countries are placed on the Allow List, then all other countries are blocked. And because all other countries are blocked, there is no need to have a Deny List with 1 or more countries, because, as stated, when using an Allow List, all other countries are blocked.

• If the Deny List is used, and 1 or more countries are placed on the Deny List, then all other countries are allowed. And because all other countries are allowed, there is no need to have an Allow List with 1 or more countries, because, as stated, when using a Deny List, all other countries are allowed.

GeoIP and RDP

The use of GeoIP for RDP connections is strongly recommended. Most hack-attempts from around the world as they do happen, are blocked when using the GeoIP Allow List, or when placing (many...most...) countries on the GeoIP Deny List.

GeoIP and SSL

The use of GeoIP for SSL connections is a "nice to have". Stopping connections based on GeoIP Location data is a bit quicker / less CPU intensive, then stopping a connection based on SSL negotiations.

Manage

Manage shows the details of the loaded GeoIP / Spamhaus Drop List database:

• Number of countries
• Number of IPv4 ranges/networks in the world
• Number of IPv6 ranges/networks in the world
• An info field that indicates a date-stamp of the GeoIP Location Data.

Because of redundancy, AADS uses either GeoIP location data from MaxMind or from IPInfoDB.

MaxMind

AADS uses GeoLite2 data created by MaxMind, available from MaxMind.

IPInfoDB

AADS uses IP2Location LITE data available from IPInfoDB.

Updates and Download

• Once a day does the AADServer check if an update of the GeoIP location / Spamhaus Drop List data is available from our websites:
  • https://www.aads-worldwide.ae
  • https://www.aads-worldwide.hk
  • https://www.aads-worldwide.ch
• When an update is available, the AADServer will download the update and use it immediately.
• Optional a HTTP(S) proxy server can be entered for downloading the data.
• See the FAQ where we publish details about our web / License servers.

Updates

It is important that the AADServer can check for Updates of the GeoIP location / Spamhaus Drop List, and Download the data.

Both the GeoIP data and the Spamhaus Drop List are updated roughly on a daily to weekly basis and is therefore "outdated" within a month. Using "outdated" data should be avoided because nowadays IPv4 networks are (re-)sold from country to country, implying that "outdated" data would allow connections from IP Addresses, or block connections from IP Addresses, because in the "outdated" GeoIP the IP Address belong to country "XYZ" while currently the IPv4 range is sold and used in country "ABC".

Suggestion: Enable and use Notifications. Whenever an Update is available or there is some problem with downloading the latest GeoIP location / Spamhaus Drop List data, a Notification (email) is send to the Administrator of the AADServer.

Search GeoIP

It is possible to search in the local GeoIP database:

• Enter an IP Address, IPv4 or IPv6, and the GeoIP location will be shown

• If the IP Address is also located on the Spamhaus Drop List, you will know: