TIP - 안랩 트러스가드/IPX 장비 격리 아이피 목록 보기

PLUS-i · 5월 28, 2017, 6:24오전

SSH 를 이용해서 CLI 에 접속 하고
conf 서브 메뉴에 들어가서다음 명령을 입력 합니다.

conf#> ips blacklist list

Total 569 found
101.244.62.58 0 0.0.0.0 0 1001 dodgechrome_get_method(HTTP) 2017/05/25 17:43:04  -
102.0.118.113 0 0.0.0.0 0 1001 http_head_method 2017/05/18 13:46:52  -
102.10.223.49 0 0.0.0.0 0 1001 http_head_method 2017/05/18 16:33:16  -
102.233.133.184 0 0.0.0.0 0 1001 apache_struts2_remote_exec-4(CVE-2017-5638) 2017/04/01 02:42:16  -
105.9.84.41 0 0.0.0.0 0 1001 http_head_method 2017/05/20 14:05:27  -
105.48.17.50 0 0.0.0.0 0 1001 http_head_method 2017/05/25 02:34:42  -
110.10.7.17 0 0.0.0.0 0 1001 webshell_exe_upload_file-1(HTTP) 2017/05/26 18:09:03  -
112.168.1.227 0 0.0.0.0 0 1001 http_head_method 2017/05/17 18:12:41  -
114.46.197.53 0 0.0.0.0 0 1001 myscan_scan 2017/04/01 04:46:50  -
114.63.94.34 0 0.0.0.0 0 1001 nmap_udp_scan 2017/05/12 07:10:40  -
114.100.139.103 0 0.0.0.0 0 1001 http_head_method 2017/05/18 11:03:44  -
114.220.122.61 0 0.0.0.0 0 1001 http_head_method 2017/05/24 12:12:29  -
123.20.111.245 0 0.0.0.0 0 1001 http_head_method 2017/05/19 02:56:26  -
123.20.205.190 0 0.0.0.0 0 1001 http_head_method 2017/05/20 13:38:00  -
...

격리 갯수가 1024를 넘지 않도록 주의 해야 한다고 합니다.

YUChoe · 7월 5, 2017, 7:53오전

추가로 격리 해제 방법은

conf#> ips ips_blacklist del 1.1.6.7 0 0.0.0.0 0