I've just recently started experimenting with blocking by geo location and wonder what other do in that regard. I've noticed in the firewall history that we get tons of probing on various ports that shouldn't really get traffic from outside the US. However, I don't necessarily want to block all traffic so figured I'd block everything from maybe Europe or the EU groups except smtp? Any thoughts on that?
We don't host our own public website so don't need to worry about that, and our customers are primarily from north america so that would be the only region I might need to worry about VPN traffic, or access to our HR systems web UI.