Client was provided an Autoshun by their insurance carrier, AIG. Logging into the device (installed outside the ASA on the WAN), showed all the denied traffic. The data is aggregated across multiple providers and creates a denial list based on attack and other vectors. It was on the network for a few years and seemed to reduce scanning traffic hitting the ASA quite a bit. The free period for the device ended but I understand it is an available option on Palo Alto devices.
Has anyone else used a hardware autoshun, and barring that, tried a software autoshun on PA equipment? Thoughts, reviews, etc?
No comments:
Post a Comment