I want to create an address-list named Blacklist of IP address that made an attempt to access router from WAN. So, it would like this:
Input chain > In interface: Ether1 > Scr. address-list: Blacklist > Action:reject
The problem is I would actually like to add a list of IP addresses to this address-list named Blacklist...not just one at a time so to avoid adding a bunch of firewall rules. Is that possible? The bad IP addresses are ones that attempted to access VPN and so far I have three addresses that a Google search resulted as known bad activities. Of course, the attempt never passes phase 1 of IPsec.