Jump to content


Photo

Malicious IP Addresses


Best Answer Gavin Chappell, 02 January 2019 - 04:14 PM

Create a new rule in the Forwarding Firewall ruleset that is above the rule allowing access to your ESG with the following settings:

 

Action: Block

Source: <explicit-src>, then double click to open the IP address entry screen where you can type in any CIDR network

Service: SMTP (or whichever port you're having problems with)

Destination: the public IP on your firewall (if you're doing destination NAT) or the public IP address of your ESG appliance if it has its own public IP address. If you're doing NAT then do not use the private IP.

Go to the full post


  • Please log in to reply
2 replies to this topic

#1 Anton Vald

Anton Vald
  • Members
  • 2 posts

Posted 02 January 2019 - 03:55 PM

Hi,

 

I would like to know how to create a new rule to block malicious IP within Firewall.  Currently Barracuda Email Security Gateway is under email spam flood trying to reach our Exchange Server.  I would like to block those IP addresses on Firewall side.

 

Thank you.



#2 Gavin Chappell

Gavin Chappell
  • Moderators
  • 402 posts
  • LocationNottingham, UK

Posted 02 January 2019 - 04:14 PM   Best Answer

Create a new rule in the Forwarding Firewall ruleset that is above the rule allowing access to your ESG with the following settings:

 

Action: Block

Source: <explicit-src>, then double click to open the IP address entry screen where you can type in any CIDR network

Service: SMTP (or whichever port you're having problems with)

Destination: the public IP on your firewall (if you're doing destination NAT) or the public IP address of your ESG appliance if it has its own public IP address. If you're doing NAT then do not use the private IP.



#3 Anton Vald

Anton Vald
  • Members
  • 2 posts

Posted 03 January 2019 - 09:12 AM

Thank you very much for fast response.  NextGen rule is working great with your help.  Over 9000 IP blocks in less then 12 hours.