The main DecisionIP section can be displayed in left menu using “
Your Firewall > DecisionIP”The main interface allows you to view the operational status of the DecisionIP Agent service.
This agent is responsible for retrieving blocking lists and transmitting the threats that your server has mitigated.
¶ Databases:
There are 5 databases grouping categories of malicious IP addresses that you can block at connection time.
On the left-hand side, below the service status, you can see the number of entries your server has added to its firewall in order to provide advanced threat shielding.
- Active threats
Contains IP addresses that are actively malicious in real time, identified through continuous global threat intelligence correlation.
Powered by distributed honeypot networks and live telemetry feeds, the list reflects ongoing attack campaigns as they happen.
Blocks up to 95% of malicious traffic before it even reaches the application layer.
- Anonymous relays
Contains IP addresses associated with anonymous relay infrastructures such as open proxies, Tor exit nodes, VPN gateways, and anonymization services.
Continuously updated through global intelligence sources and network analysis, the list reflects active anonymization endpoints in real time.
- Anonymous relays without VPNs
Refers to network infrastructures that anonymize traffic but are not traditional commercial VPN endpoints
- Unethical bots
Unethical bots refer to automated systems that interact with websites in violation of acceptable use policies, terms of service, or legal frameworks.
These bots are typically designed to extract value, manipulate services, or cause disruption rather than provide legitimate functionality.
- Trusted networks
Refers to a predefined list of trusted IP addresses, networks,
or entities that are explicitly allowed to access a service without being subject to standard security restrictions.
Entries in a whitelist bypass certain filtering mechanisms such as rate limiting, reputation checks, ASN blocking, or bot detection rules.