Is it possible to utilize any dynamic IPS | IDS functionality of SourceFire for known malicious IPs and geo-blocking of rogue nation states without the purchase of a dedicated IPS | IDS system.
Can I, for example, utilize Brightcloud | Talos to filter out all incoming connections from known malicious websites, dynamically learn IPs that are port scanning and block them, and block certain countries, similar to what a dedicated IPS | IDS would do, rather than having the connection allowed all the way?
Or does this functionality require an additional IPS module or third party IPS | IDS system?
Tom