diff --git a/config.yml b/config.yml
index 22d0b3f..8b5f969 100644
--- a/config.yml
+++ b/config.yml
@@ -7,6 +7,7 @@ http:
         - https
       service: gogs
       middlewares:
+        - geoblock
         - secure-headers
         - crowdsec-bouncer
       tls:
@@ -50,3 +51,21 @@ http:
           crowdsecLapiHost: crowdsec:8080
           crowdsecLapiScheme: http
           forwardedHeadersCustomName: X-Custom-Header
+
+    # GeoIP blocking - Allow only US traffic
+    geoblock:
+      plugin:
+        geoblock:
+          silentStartUp: false
+          allowLocalRequests: true
+          logLocalRequests: false
+          logAllowedRequests: false
+          logApiRequests: false
+          api: https://get.geojs.io/v1/ip/country/{ip}
+          apiTimeoutMs: 750
+          cacheSize: 25
+          forceMonthlyUpdate: true
+          allowUnknownCountries: false
+          unknownCountryApiResponse: nil
+          countries:
+            - US
diff --git a/traefik.yml b/traefik.yml
index 8a8a2fd..ec24635 100644
--- a/traefik.yml
+++ b/traefik.yml
@@ -7,6 +7,9 @@ experimental:
     bouncer:
       moduleName: github.com/maxlerebourg/crowdsec-bouncer-traefik-plugin
       version: v1.3.3
+    geoblock:
+      moduleName: github.com/PascalMinder/geoblock
+      version: v0.2.7
 
 entryPoints:
   http: