Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
386
Views
0
Helpful
1
Replies

Permanently block an ip after X amount of login failures?

j_friedrich
Beginner
Beginner

‎11-18-2014 07:31 AM - edited ‎02-21-2020 05:19 AM

Hi,

 

     I am struggling to find a solution to do the following:  Permanently block an ip after X amount of login failures?  I know it sounds simple, but, maybe someone can give me an example.  I don't want to block a range of ip's, just a specific one after X amount of login failures.  I wasn't sure if this is an EEM script that has to be created or something else?  Also, this can be a login that was tried after X amount of tries OR a login failure using different key words.  Basically, I am trying to keep out some of the crap coming from China and so on......

 

Thanks for everyone's help.

 

Cheers.

 

Jason

 

 

0 Helpful
1 Reply 1

j_friedrich
Beginner
Beginner

‎11-18-2014 07:33 AM

Hi,

 

     Sorry, I forgot to mention it's a Cisco 3825 router.  We don't have a firewall solution yet.  I just need something in the mean time.

 

Thanks.

Jason

 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers
Spotlight Award Nomination
Customers Also Viewed These Support Documents