Hi,
I am searching for a way or software to allow me to post IPs from my server farm to the PIX firewall.
For instance, I have several scripts that check for abusive IPs, i.e. ips that are dictionary attacking, trying to relay, SPAMMER IPs, other IPS that abuse DNS and also the common ftp dictionary attacks. We want the blocked from the network.
My scripts find the ips and them to the servers firewal currently, (apf/iptables).
I would rather pass these IPs to the PIX instead of running apf and iptables on the servers.
This prevents the abusive IP's to hit the next server after its been marked as one to block.
Is there a common way to run a script on the firewall to accept an incoming script call with the IP to block as a parameter, send to the firewal and restart the ACL?
Thanks for the help,
-Ts
I am searching for a way or software to allow me to post IPs from my server farm to the PIX firewall.
For instance, I have several scripts that check for abusive IPs, i.e. ips that are dictionary attacking, trying to relay, SPAMMER IPs, other IPS that abuse DNS and also the common ftp dictionary attacks. We want the blocked from the network.
My scripts find the ips and them to the servers firewal currently, (apf/iptables).
I would rather pass these IPs to the PIX instead of running apf and iptables on the servers.
This prevents the abusive IP's to hit the next server after its been marked as one to block.
Is there a common way to run a script on the firewall to accept an incoming script call with the IP to block as a parameter, send to the firewal and restart the ACL?
Thanks for the help,
-Ts