This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to block all ip's from colocrossing.com (portscan)

Hello,
About once a week I get 5-15 portscan attempts, and it's always from colocrossing.com. I would normally just block all incoming from usa, but I subscribe to some services that I haven't been able to figure out how to allow through the blocked country when I enable it.

So I'm wondering is there a way to block/drop all inbound traffic from all of colocrossing.com's IP's.

Any suggestion are welcome.

This thread was automatically locked due to age.

Parents

0 William Warren over 10 years ago

That's a ton of ranges to manually enter as they aren't all contiguous blocks of the same CIDR range. Colocrossing is a large colocation company. if the portscanner is dropping it i would let it go IMO.

Owner: Emmanuel Technology Consulting

http://etc-md.com

Former Sophos SG(Astaro) advocate/researcher/Silver Partner

PfSense w/Suricata, ntopng,

Other addons to follow
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 William Warren over 10 years ago

That's a ton of ranges to manually enter as they aren't all contiguous blocks of the same CIDR range. Colocrossing is a large colocation company. if the portscanner is dropping it i would let it go IMO.

Owner: Emmanuel Technology Consulting

http://etc-md.com

Former Sophos SG(Astaro) advocate/researcher/Silver Partner

PfSense w/Suricata, ntopng,

Other addons to follow
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data