Main Nav

spamhaus drop etc.

Greetings All,

I am planning to add the spamhaus drop and possibly edrop list(s) to bogon filters on our internet router.

Has anyone experience doing this? Care to share results and how much care & feeding this effort will entail over time?

Thank You,

John

Comments

On Thu, Sep 20, 2012 at 02:47:01PM -0500, john wrote: > Greetings All, > > I am planning to add the spamhaus drop and possibly edrop list(s) to bogon > filters on our internet router. > > Has anyone experience doing this? Care to share results and how much care & > feeding this effort will entail over time? We've been blocking the DROP list for years.. I don't think there has ever been an issue.. they seem to be pretty conservative. -- -- Justin Azoff -- Network Security & Performance Analyst
On 9/20/2012 4:02 PM, Justin Azoff wrote: > On Thu, Sep 20, 2012 at 02:47:01PM -0500, john wrote: >> Greetings All, >> >> I am planning to add the spamhaus drop and possibly edrop list(s) to bogon >> filters on our internet router. >> >> Has anyone experience doing this? Care to share results and how much care & >> feeding this effort will entail over time? > We've been blocking the DROP list for years.. I don't think there has > ever been an issue.. they seem to be pretty conservative. Same here... null routed at the border w/uRPF active to block source addresses too. Jeff
spamhaus drop etc.

We have been using the Emerging Threats block list for a couple of years now.  It is available in several formats for common firewalls.  The only issue we had was when our communications department started hosting news on Yahoo’s hosting service.  We tailored our scripts to remove those IPs if found.  We are about ready to fully automate it.

 

 

Ronald King

Security Engineer

Norfolk State University

http://security.nsu.edu