Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
253
Views
0
Helpful
1
Replies

Blocking lists of transparent proxies etc

george_daly
Level 1
Level 1

‎09-26-2007 05:19 AM - edited ‎03-09-2019 06:53 PM

Hi,

I'd be very interested how others deal with blocking lists of known bad guys, transparent proxies etc. I know there are IP lists that can be obtained from various places, one that I recently saw has over 500k entries..

That's obviously not suitable for an edge ACL or null routing.

How do others deal with blocking very large lists of IPs, or do you just not do this?

I'd be particularly interested in solutions involving F5 BigIPs, FWSM or ASA.

Cheers,

George

Labels:
0 Helpful
1 Reply 1

srue
Level 7
Level 7

‎09-26-2007 05:24 AM

I used IPS devices inline to block all addresses from China. IPS units are already examining every packet. I didn't want the routers to do it because they were already running full BGP routing tables. That would have been too much overhead for the PIX515e's in place at this particular location.

There weren't even close to 500k entries though.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents