Hey boys and girls,
Happy Friday! Figured would share this, as its super useful, specially for anyone who is not running AV or AB blades on the firewall to block known bad IPs out there. All you do is create new network feed (can only be tested if running R81.20) and then those can be used to block the traffic from those feeds. There are 8 of them and all you do is replace number 1-8 in the link below:
Github link -> https://github.com/stamparm/ipsum
feed example -> https://raw.githubusercontent.com/stamparm/ipsum/master/levels/1.txt
You can create 8 separate network feeds, simply keep replacing numbers sequentially, 1 to 8.
Thanks @delToro1 for sharing this in my other IOC post.
I set it up in my Azure lab and so far, got 140K hits in less than 1 day, that is super impressive even though its Azure, but I got no hosts behind the fw in that lab at all.
Example:
Thanks a bunch as well to Miroslav Stampar for creating this.
Best,
Andy
| User | Count |
|---|---|
| 27 | |
| 12 | |
| 8 | |
| 8 | |
| 6 | |
| 5 | |
| 5 | |
| 5 | |
| 5 | |
| 4 |
Tue 21 May 2024 @ 10:00 AM (CEST)
CheckMates Live DACH - Einführung in Check Points Hyperscalinglösung - Quantum MaestroWed 22 May 2024 @ 10:00 AM (BRT)
Brazil: Desafios e melhores práticas na gestão de CibersegurançaTue 28 May 2024 @ 01:00 PM (SGT)
APAC: Evaluating Azure Virtual WAN security: Five customer use casesTue 21 May 2024 @ 10:00 AM (CEST)
CheckMates Live DACH - Einführung in Check Points Hyperscalinglösung - Quantum MaestroWed 22 May 2024 @ 10:00 AM (BRT)
Brazil: Desafios e melhores práticas na gestão de CibersegurançaWed 05 Jun 2024 @ 02:00 PM (PDT)
Orange County, CA: CPX 2024 Highlights, AI-Driven Cyberthreats, and Quantum Computing
