23rd April 2011, 2:32 PM
Network security is pritty tricky sometimes.. For example they could be under a DOS attack in which case banning IP's does very little good.. Pretty much waiting out the storm in your only option. Plus if you ban to many IP's the firewall cant handle all the 'kill' packets which is a issue in itself.. Plus it could be a simple matter of their DMZ caught fire and now they have to wait 5 days for a new one to be rush ordered and configured. That's one of the reasons I like Cisco so much, you can basically build a device image and dump that config on a replacement part in about 5 minutes, which is great for minimizing down time.. The only real work is just physically hooking the thing up..
I say don't be so quick to judge, some hackers can really inflect damning damage to a network, and recovery can be slow.
I say don't be so quick to judge, some hackers can really inflect damning damage to a network, and recovery can be slow.