Why isn't the Botnet service blocking the hacking attempts?
JackBurton
Newbie ✭
in SSL VPN
This attack has been on-going and has known IP's that they are using.
So why isn't the service we pay for blocking this attacks?
Even Cisco has posted the IP's being used.
Category: SSL VPN
3
Answers
You're assuming Sonicwall updates their botnet list when attacks are occurring, let alone maintains it at all. You're paying for a license to utilize a feature, not a service.
The current Sonicwall-maintained botnet list entry count is 593 entries…
Cisco's list is in the thousands, and hasn't changed in a week…
I'm sure the attack source IPs have changed though.
They're a moving target like TKWITS said. For my company, I enabled the Dynamic Botnet Filter and then I periodically gather unique IPs that are attacking us and put them on a Github page that the Sonicwall can read and block.