I would start by checking the antispoofing configuration. Rule 0 items are
indicative of 1) spoofing notifications 2) return connections coming in on known
service ports.
MIS wrote:
> how to fix a problem of nameserver query reject by rule 0
> >from internal network to DNS server in DMZ
>
> I got the following option checked in the Properties Setup
>
> Accept Domain Name over UDP (Queries) First
> Accept Domain Name over TCP (Zone Transfer) First
>
> thanks in advance
>
> ================================================================================
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> ================================================================================
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
