hey guys, I work at an ISP as a network security engineer, managing the in house firewalls serving our in house servers. We have a security research team who has come up with the brilliant idea of blocking malicious or risky public IP addresses for fear of getting brute force attacks from them. They want us to implement this block list on all public facing firewalls which is close to 50. Is this a standard thing to do? I feel blocking public IP addresses manually every time some one tries to brute force you is just ridiculous. this time they need us to block around 4k IP addresses. What do you think?