Configure the Tor Exit Node Blocking Update Server

The Tor Exit Node Blocking service (Fireware v12.8.1 and higher and Fireware v12.5.10 and higher) uses a list of known Tor exit node IP addresses from Reputation Enabled Defense (RED). To make sure your Tor exit node IP address database is current, you must enable automatic updates.

  1. Select Subscription Services > Botnet Detection.
    The Botnet Detection page opens.
  2. Select the Update Server tab.

Screenshot of the Tor Update Server UI

  1. To enable automatic updates, select the Enable Automatic Update check box.
  2. In the Interval text box, type or select the number of hours between automatic updates.
  3. To automatically update the Tor exit node IP address list at the selected update interval, select the Tor Exit Node Database check box.
  4. Click Save.
  1. Select Subscription Services > Botnet Detection.
    The Botnet Detection dialog box opens.
  2. Click Update Server.
    The Update Server dialog box opens.

Screenshot of the Tor Update Server UI

  1. To enable automatic updates, select the Enable Automatic Update check box.
  2. In the Interval text box, type or select the number of hours between automatic updates.
  3. To automatically update the Tor exit node database at the selected update interval, select the Tor Exit Node Database check box.
  4. Save the configuration to the Firebox.

Connect to the Update Server Through an HTTP-Proxy Server

If your Firebox must connect to the update server through an HTTP-proxy, you must add information about the HTTP-proxy server to your update server configuration.

  1. In the HTTP Proxy Server section, select the Connect to Update Server with an HTTP Proxy Server check box.
  2. In the Server Address section, type the IP address or host name of your HTTP-proxy server.
  3. (Optional) To specify which port number to use to connect to your HTTP-proxy server, in the Server Port text box, type the port number.
    Most HTTP-proxy servers accept requests on port 8080. You must only specify a different port if your server does not use port 8080.
  4. From the Server Authentication drop-down list, select the type of authentication your HTTP-proxy server uses.
    • If your HTTP-proxy does not require authentication, select No Auth.
    • If your HTTP-proxy server requires NTLM or Basic authentication, in the text boxes, type your User Name, Domain, and Password.
  5. Save your configuration.

Update Signatures Manually

For information about how to view the status of signature updates, and how to manually force an update to the most current signatures, go to Subscription Services Status and Manual Signatures Updates.

Related Topics

About Tor Exit Node Blocking

Configure Tor Exit Node Blocking

Monitor Tor Exit Node Blocking Activity