Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
569
Views
0
Helpful
0
Replies

Blocking IP addresses

gcook0001
Level 1
Level 1

‎01-17-2022 08:21 AM

I was wondering if there is a way to automatically block IP addresses depending on traffic analysis.  I see a number of attempts from an attacker and see the traffic is being blocked on the attempt but I would like to impose a temporary block on any IP where the traffic is marked as malicious including legitimate traffic.  

Example

IP address 111.111.111.111 is marked as a dropped Intrusion event. But I also see legitimate traffic from that IP.

So I would 

0 Helpful
0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card