Manualshelf

User guide

ManualsBrandsWatchguard ManualsComputer equipmentFirebox X4500
161162163164165166167168169170
Default Threat Protection
150 Firebox X Edge e-Series
About blocked sites
A blocked site is an IP address that cannot make a connection through the Firebox.You tell the Firebox to block
specific sites you know or think are a security risk. After you find the source of suspicious traffic, you can block
all connections from that IP address. You can also define the Firebox to send a log message each time the
source tries to connect to your network. From the log file, you can see the services that the sources use to
launch attacks.
All traffic from a blocked IP address is denied. You can define two different types of blocked IP
addresses: permanent or auto-blocked.
Permanently blocked sites
Network traffic from permanently blocked sites is always denied. These IP addresses are stored in the Blocked
Sites list and must be added manually. For example, you can add an IP address that constantly attempts to
scan your network to the Blocked Sites list to prevent port scans from that site.
To block a site, see Block a site permanently
.
Auto-blocked sites/Temporary Blocked Sites list
Packets from auto-blocked sites are denied for the amount of time you specify. You can choose to
automatically block sites that send unhandled network traffic.
To automatically block unhandled traffic, see Block sites temporarily
.