This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About dhamlin
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About dhamlin
02-01-2022
2Posts
0Likes
0Solutions
Feb 01, 2022Last Visited
User
Activity
User
Profile
Latest posts by dhamlin
| Subject | Views | Posted |
|---|---|---|
| 1800 | 06-08-2012 12:36 PM | |
| 1914 | 06-08-2012 07:06 AM |
User Badges
Community Statistics
| Member Since | 06-05-2012 07:34 AM |
| Date Last Visited | 02-01-2022 05:09 PM |
| Posts | 2 |
06-08-2012
12:36 PM
I'll try and clarify: If an Internet-based host sends any kind of traffic to my dark/unused subnets, then I want to block all of their traffic for 10 minutes, even if their traffic is going to legitimate subnets on my network. My addresses are publically routable, but as an example let's say I own 172.16.0.0/16. Let's say that 172.16.1.0/24 isn't in use, but 172.16.2.0/24 is. If 5.6.7.8 attempts to scan 172.16.1.0/24 then I want to block all of his traffic, including any attempts to communicate with anything on 172.16.2.0/24. Host 5.6.7.8 has indicated that he is doing "bad things" because he is attempting to communicate with a subnet that isn't even in use. Therefore any further network traffic from him should be considered suspect and I would like to drop all of his traffic for the next 10 minutes. It would seem that it might be possible with Zone Protection or DoS protection, but since I new to PA I'm still learning how it works.
... View more
06-08-2012
07:06 AM
Is it possible to implement a darknet on PAN OS 4.1? I have a number of publically addressable subnets that aren't in use and I'd like to block all traffic, for some period of time, from Internet-based hosts who hit those subnets. I currently have rules in place to drop traffic to those subnets, but I'd like to take the additional action of blocking all other traffic from hosts that attempt to access those subnets.
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
02-01-2022
05:09 PM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks