We can find lists of blacklisted IPs on internet like this http://spam-ip.com/list-1.html How to make cisco router create an access-list with a content taken from the resource above and prevent any traffic towards my network from those IPs?
That's a long list of IPs, implementing it in an ACL with host entries would be challenging.
Anway, the first step for you would be to write a script that parses that data and makes an ACL out of it and stores that on a server. Then nightly a script could run that uploads the new ACL, you could use a tool like RANCID or Kiwi Cattools to help with this or write an Expect or PERL script.
Be careful when editing the ACL or you could lose traffic while it gets updated. It might be better to do something like:
ip access-list extended NEW_ACL
deny ip host x.x.x.x any
deny ip host y.y.y.y any
no ip access-group OLD_ACL in/out
ip access-group NEW_ACL in/out
There is also the possibility of downloading ACL from TFTP server to the running-config. I guess this could be automated with EEM as well and a timer that runs.
That should give you some ideas to get started. I also found this script called aclmaker which was written by someone to update ACLs.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...