Network Protection: Firewall, NAT, QoS, & IPS Autoblock portscanners

UTM Firewall requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 1 reply
Subscribers 2 subscribers
Views 498 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Autoblock portscanners

Eklof over 19 years ago

Hi.

Is there a automatic way to ban portscanners detected by IDS for a specified lenght of time of permanently?

This thread was automatically locked due to age.

Parents

0 BarryG over 19 years ago

No.

Also, it's not a very good idea... if you're running a public server (web, mail, whatever), someone can block your customers from reaching you if you auto-block, by sending you spoofed portscans.

It gets even uglier... people can hijack your DNS this way.

See Dan Kaminsky's presentations for details.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BarryG over 19 years ago

No.

Also, it's not a very good idea... if you're running a public server (web, mail, whatever), someone can block your customers from reaching you if you auto-block, by sending you spoofed portscans.

It gets even uglier... people can hijack your DNS this way.

See Dan Kaminsky's presentations for details.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data