Re: would had blocked the US and UK, and then almost all malicious attacks would have stopped.
"How about blocking the entire internet, then you won't see a single attack."
That's precisely what I do. For services where no legitimate traffic originates from the Internet, that whole outside world is blocked. Pretty much anyone running a boundary firewall has been doing that for years. ... which leads me back to my original point, locations from which you are not getting any legitimate traffic can and should be blocked.