Define regions to apply policy to specified countries or locations. Applying policy
based on region is a great way to control traffic between branch offices.
Regions, along with
Addresses and
Address Groups allow you to group specific
source or destination addresses that require the same policy enforcement. The
address object can include an IPv4 or IPv6 address (single IP, range, subnet), an IP
wildcard address (IPv4 address/wildcard mask) or the FQDN. Alternatively, a region
can be defined by the latitude and longitude coordinates or you can select a country
and define an IP address or IP range. You can then group a collection of address
objects to create an address group object. You can also use
dynamic
address groups to dynamically update IP addresses in environments where
host IP addresses change frequently.
Here, we're going to show you how to use Regions to get better
control over the flow of traffic between your branches. Follow these steps to
specify a geographical region to apply policy to.