NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] local interface address spoofing. Turn off how?



I am trying to get my SecureClient laptops to be able to update the
SecureClient site when they are on the LAN. The problem is that the
managment server has a legal "NATed" IP address in the SecureClient config.
When the clients tries to update their site on the LAN, they try to go to
the external address, which the firewall (default gateway) NATs to its true
internal address. 

I added a rule to deal with the routing and some NAT issues. The problem now
is that I get a "local interface address spoofing" error message (rule 0). I
have turned off all anti-spoofing rules in the firewall objects and turned
off MAD (at least I think I have) on the mgmt station and firewall. No luck.

How do I turn off this spoofing protection or is it possible to config
SecureClient to automatically use a different IP for the server when
connected to the local network? Thanks.

-Tim
 
________________________   ______     ____       ___          __           
Tim Russo				
Xchange, Inc.
Sr. Security Engineer
EMail: [email protected]		
Phone:FAX:================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================



 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents � 2003 Network Presence, LLC. All rights reserved.