The IPDS (Intrusion and Prevention Detection System) section within the IPDS module facilitates the configuration and implementation of protection rules at both the system and farm service levels. IPDS employs various techniques designed to detect, analyze, and block network attacks.
RBL (Real-time Blackhole Lists) serve as community-based repositories for IP Reputation. They are primarily used to identify spam comments and network attacks by maintaining a centralized list of IPs that can be blacklisted on servers, thereby reducing the likelihood of attacks on our servers.
This section displays a list of configured RBL rules:
The fields associated with each rule include:
Name. A unique descriptive name for the rule.
Only Logging. When activated, this option logs information to syslog without affecting traffic.
Farms. List of farms where the rule is applied.
Status. Indicates whether the rule is currently active.
Actions. Provides options to edit, start/stop the rule, or delete it.
The actions menu also allows for the addition and configuration of new RBL rules.
Refer to this link for more details on Creating New RBL Rules, or visit this page to learn about Updating an RBL Rule.