Applies To: Locally-managed Fireboxes
If you manage several Fireboxes and want to use the same blocked sites or blocked sites exceptions for more than one device, you can create a list of the sites to block in a plain text (.txt) file and import the file into each device. The limit for static blocked sites in the database is 250,000 IP addresses.
The auto-block list can include a maximum of 1,000 IP addresses for T Series models and 8,000 IP addresses for M Series models.
The IP addresses in the text file must be separated by spaces or line breaks. Use slash notation to specify networks. Use a pipe character to add a comment. To indicate a range of addresses, separate the start and end addresses with a hyphen.
An example text import file might look like this:
2.2.2.2|Requested by compliance tester 5.5.5.0/24|Requested by compliance tester 3.3.3.3-3.3.3.8|Requested by compliance tester 6.6.6.6|London office 7.7.7.7|New York office
You can use Policy Manager to import the IP addresses to the Blocked Sites or Blocked Sites Exceptions list for the current Firebox.
- Select Setup > Default Threat Protection > Blocked Sites.
The Blocked Sites Configuration dialog appears. - To import blocked sites from a file, click the Blocked Sites tab.
Or, to import blocked sites exceptions, click the Blocked Site Exceptions tab. - Click Import.
The Select a File dialog box appears. - Browse to select the file. Click Select a File.
The sites in the file appear in the Blocked Sites or Blocked Sites Exceptions list. - Click OK.