Was this article helpful?
NimbostratusIt's missing this step: Security>>Application Security: Policy Building:Learning and Blocking Settings
search for Custom Violations section and enable Alarm and Block settings for the just created violation Illegal_IP_Address.
Tested on version 16.1.4.x
Nimbostratusrenaranj2024 is possible to create a new how-to using your version?
NimbostratusUse this procedure and add the two steps I wrote.
The Code works fine. Use you datagroup name and custom violation name.
NimbostratusOk, I'll try to use it, the same code from the example, my concern is blocking everything, not just the Black_list IPs, but all sources.