Go into the object you created for the firewall, go to interfaces, click on
any of the interfaces, properties it and go to the security tab.
You should set the external interface to only allow traffic from external
(not this net) addresses.. this will prevent spoofing.
of course, turn logging on also..
-----Original Message-----
From: Ben Cuthbert [mailto:[EMAIL PROTECTED]]
Sent: Saturday, August 05, 2000 7:42 PM
To: [EMAIL PROTECTED]
Subject: [FW1] Spoof IP address on Firewall-1
Can someone tell me how to combat this
when i install a security policy, this message comes up
You are about to install the security policy on fw-1 without limiting
the valid addresses on its interfaces to protect form IP address spoofing
Are you Sure ?
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
