When the firewall blocks a source IP address,
such as when you configure a
Protection policy rule with the Action to
or a Security policy with a Vulnerability Protection profile, the
firewall automatically blocks that traffic in hardware before those
packets use CPU or packet buffer resources.
Hardware IP address
blocking is supported on PA-3060 firewalls, PA-3050 firewalls, PA-5000
Series firewalls, PA-5200 Series firewalls, and PA-7000 Series firewalls.
can Monitor Blocked IP Addresses,
for example to get more information about an IP address on the block
list, change how long hardware blocks IP addresses, and delete an
IP address from the list if you think it shouldn’t be blocked.
View block list entries.
Block IP List
Entries on the block list indicate whether they were blocked
by hardware (hw) or software (sw).
To view details about an address on the block list,
hover over a Source IP address and click the down arrow link. Click