Telix – centos 6 – iptables – can not add US in geoip

*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
# fop, ast manager, pptp, ssh, web
-A INPUT -m state --state NEW -m tcp -p tcp --dport 4445 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 5038 -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 1723 -j ACCEPT
-A INPUT -p udp -m udp -s nagios-ip --dport 161 -j ACCEPT
# should add US IP here
-A INPUT -s 87.98.246.193 -j DROP
-A INPUT -s 10.0.0.0/8 -j ACCEPT
-A INPUT -s 192.168.0.0/16 -j ACCEPT
# Allow connections to SIP and IAX signalling ports
-A INPUT -m state --state NEW -m udp -p udp --dport 5060 -j ACCEPT
-A INPUT -p udp -m udp -m multiport -m geoip --src-cc FR,DE,HU,IL,AU,CN -j DROP --dports 5060
#-A INPUT -p udp -m udp -m multiport -m geoip --src-cc CA -j ACCEPT --dports 5060
-A INPUT -m state --state NEW -m udp -p udp --dport 5060 -j LOG
# Allow connections to RTP ports
-A INPUT -p udp -m udp --dport 10000:20000 -j ACCEPT
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
COMMIT