The IPBan Pro API maintains a central database of the worst offending ip addresses involved in botnets and brute force attacks. The web admin utility keeps a constant ping to the IPBan Pro API, sending a full list to any newly connected clients, and from then on only a delta (change) list as the naughty list updates.

Each IPBan Pro client adds the naughty list received from the web admin utility to the firewall. This prevents any login attempt from the worst and most frequent offending ip addresses.

Think of this just like Santa’s naughty list. Once you end up in the naughty list, you are blocked out from anywhere IPBan Pro is installed until you stop hacking for a set length of time. Hack again and you go right back in the naughty list.

The naughty list will show up in the firewall with a ‘NL_’ prefixed rule name.

The naughty list works in conjuction with the recent list to provide a powerful base layer of protection to your machines.