You don't need (or want) to make the whole class B network an alias on the GNAT Box -- you only want to give the GNAT Box and alias which is a member of that Class B.
Once you have done that, this traffic will no longer be considered "spoofed", and you can use a Remote Access Filter to Block/nolog it. Mike Burden Lynk Systems http://www.lynk.com (616)532-4985 [EMAIL PROTECTED] > -----Original Message----- > From: Emmanuel Cerisier [mailto:[EMAIL PROTECTED]] > Sent: Monday, November 18, 2002 12:26 PM > To: [EMAIL PROTECTED] > Subject: Re: [gb-users] howto filter some Possible spoofs alarms ? > > > Thanks, and sorry for this late reply. > > I'm just wondering how to add a whole B subnet as a PRO > interface alias. > GB Admin won't take 169.254.0.0 as a valid answer for an IP > alias; I've > also tried to play with the netmask with no success.. > > Thx > Emmanuel. > > Mike Burden wrote: > > >Create an alias on the GNAT Box PRO interface with a > >169.254.x.x/16 address. Create a Remote Access filter > >to block/nolog all traffic to this address. > > > >Once the GNAT Box considers 169.254.x.x to be part of > >the PRO network, it will no longer consider this to be > >"possible spoof" traffic. > > > >Mike Burden > >Lynk Systems > >http://www.lynk.com > >(616)532-4985 > >[EMAIL PROTECTED] > > > > > > > [...] > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > To subscribe to the digest version first unsubscribe, then > e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > Archive of the last 1000 messages: > http://www.mail-archive.com/[email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archive of the last 1000 messages: http://www.mail-archive.com/[email protected]
