After sucessfully deploying our Barracuda Spam and Firewall 300 appliance, I decided it would be time to produce some analytical information based on the network activity.
I hooked into the Barracuda and captured inbound messages and logged them to a database in realtime. With the information at hand and some IP geocoding I produced a realtime UI showing where spam originates.
This is first cut of the application future versions will be able to produce some information like:
a. Top IP Spammers
b. Top Country Spammers
c. Top Spam recepients
Also based on the frequency of the spam and IP I could dynamically block the IP address on our Cisco 2800 router using a telnet and IOS commands to apply access-list on the inbound interface now that would neat way to block persistent spammers.
No comments:
Post a Comment