Hi, I’m looking for ways to harden my security configuration using my mikrotik home router.
I’ve seen that ip.team-cymru.com allows to check if your host/network is in the list of compromised hosts/IPs known to Team Cymru.
Thus I’m wondering if that’s valuable check to be periodically running on my router?
The possible action if my IP is reported as compromised - send an email to me and shutdown all traffic IN/OUT of wan and isolate internal WiFI/ETH clients.
Is there any obvious issue with such approach and does anybody have/seen script that could at least check if host is known to be compromised?
I’ve checked on the forum and github - but couldn’t spot anything easilly.
Thanks.