We have successfully deployed a major hardening patch to our edge infrastructure. First, we resolved a critical synchronization logic in our custom dns-bot-guard engine, ensuring that ban decisions in Redis are instantly and persistently enforced by the kernel's nftables firewall.
Second, we have expanded our pre-emptive blocking capability by integrating seven elite threat intelligence feeds. This includes the 'Gold Standard' FireHOL Level 1, Spamhaus DROP for hijacked networks, and specialized trackers for banking trojans (Feodo) and brute-force scanners (GreenSnow).
A massive expansion of our edge security. We have integrated 7 global threat intelligence feeds-including FireHOL and Spamhaus-and optimized our firewall synchronization engine.
Highlights
- Integrated FireHOL L1 & Spamhaus DROP (100% malicious history)
- Added Feodo Tracker, GreenSnow, & DShield feeds
- Patched Redis-to-NFTables persistent synchronization
- Enhanced protection against C2 botnets and scanners