https://community.cisco.com/t5/network-security/block-ip-address-from-outside-interface/m-p/1709875#M529300 <HTML><HEAD></HEAD><BODY><P style="padding: 0pt; margin: 0pt;">Hey Josh,</P><P></P><P style="padding: 0pt; margin: 0pt;">If you don't want any connection to estaiblish from two known IP addresses, you may go ahead and "shun" them. The command to do this will look like:</P><P></P><PRE style="display: block; white-space: pre; width: auto; font-size: 13px; padding: 0pt; margin: 0pt;">hostname#<STRONG> shun <IP_ADDRESS></IP_ADDRESS></STRONG></PRE><PRE style="display: block; white-space: pre; width: auto; font-size: 13px; padding: 0pt; margin: 0pt;"><STRONG><BR /></STRONG></PRE><PRE style="display: block; white-space: pre; width: auto; font-size: 13px; padding: 0pt; margin: 0pt;">Hope this helps! </PRE><P style="padding: 0pt; margin: 0pt;">Regards,</P><P style="padding: 0pt; margin: 0pt;">Aditya</P></BODY></HTML> Fri, 24 Jun 2011 15:50:10 GMT advijay 2011-06-24T15:50:10Z https://community.cisco.com/t5/network-security/block-ip-address-from-outside-interface/m-p/1709872#M529297 <P>Hello.</P><P></P><P>Recently, I've been having significant problems with denial of service on our ASA-5510. Two IP addresses in particular attack my ASA regularly. What kind of rule do I need to create to deny these IP's access to my firewall?</P><P></P><P>Thanks!</P><P></P><P>Sent from Cisco Technical Support iPhone App</P> Mon, 11 Mar 2019 20:50:12 GMT https://community.cisco.com/t5/network-security/block-ip-address-from-outside-interface/m-p/1709872#M529297 SamMooreIT 2019-03-11T20:50:12Z https://community.cisco.com/t5/network-security/block-ip-address-from-outside-interface/m-p/1709873#M529298 <HTML><HEAD></HEAD><BODY><P>What type of attack?</P></BODY></HTML> Fri, 24 Jun 2011 15:09:35 GMT https://community.cisco.com/t5/network-security/block-ip-address-from-outside-interface/m-p/1709873#M529298 Kelvin Willacey 2011-06-24T15:09:35Z https://community.cisco.com/t5/network-security/block-ip-address-from-outside-interface/m-p/1709874#M529299 <HTML><HEAD></HEAD><BODY><P>Either a Scan or SYN attack. But the IP's in question are generating significant inbound traffic. They are listed in top 10 sources pie of my ASDM GUI.</P><P></P><P>Sent from Cisco Technical Support iPhone App</P></BODY></HTML> Fri, 24 Jun 2011 15:46:04 GMT https://community.cisco.com/t5/network-security/block-ip-address-from-outside-interface/m-p/1709874#M529299 SamMooreIT 2011-06-24T15:46:04Z https://community.cisco.com/t5/network-security/block-ip-address-from-outside-interface/m-p/1709875#M529300 <HTML><HEAD></HEAD><BODY><P style="padding: 0pt; margin: 0pt;">Hey Josh,</P><P></P><P style="padding: 0pt; margin: 0pt;">If you don't want any connection to estaiblish from two known IP addresses, you may go ahead and "shun" them. The command to do this will look like:</P><P></P><PRE style="display: block; white-space: pre; width: auto; font-size: 13px; padding: 0pt; margin: 0pt;">hostname#<STRONG> shun <IP_ADDRESS></IP_ADDRESS></STRONG></PRE><PRE style="display: block; white-space: pre; width: auto; font-size: 13px; padding: 0pt; margin: 0pt;"><STRONG><BR /></STRONG></PRE><PRE style="display: block; white-space: pre; width: auto; font-size: 13px; padding: 0pt; margin: 0pt;">Hope this helps! </PRE><P style="padding: 0pt; margin: 0pt;">Regards,</P><P style="padding: 0pt; margin: 0pt;">Aditya</P></BODY></HTML> Fri, 24 Jun 2011 15:50:10 GMT https://community.cisco.com/t5/network-security/block-ip-address-from-outside-interface/m-p/1709875#M529300 advijay 2011-06-24T15:50:10Z https://community.cisco.com/t5/network-security/block-ip-address-from-outside-interface/m-p/1709876#M529302 <HTML><HEAD></HEAD><BODY><P>Since the attack has already taken place. If you are not allowing these&nbsp; IPs ASA will be blocking them anyways. The best course of action will be to have it blocked upstream and if upstream is your service provider then talk to provider to have the IPs blocked on upstream.</P></BODY></HTML> Fri, 24 Jun 2011 18:05:01 GMT https://community.cisco.com/t5/network-security/block-ip-address-from-outside-interface/m-p/1709876#M529302 andhingr 2011-06-24T18:05:01Z