Is it possible to have an unused IP address on my ASA, which when it receives traffic flags the source as a bad actor for the whole device.
It would work essentially like a spam trap for an email server, where anyone sending to that address clearly indicates a bad actor.
I would like to have that address automatically added to a list that is part of a ban filter.
I am sure I could cobble something together with SNMP and Expect in conjunction with a host on my network but was wondering if there was a more simple way to approach this before doing a ton of work on it.
Thank you for any ideas.