Hi,
even if you don't install Anti-Spoofing you may get drops by rule 0.
This may be the case if you have checked logging for IP packets with
entries in the
Options field in the header or - esp. 4.1 SP2 - if there are packets
with ACK set
that the FW doesn't "know" in it's State Tables (reason: Unknown established
TCP
packet).
Take a look in the Log Viewer's Info field on the very right side.
In most of the
cases you get further information here.
Hope it helps
Best regards
Matthias
Estela Ruiz wrote:
> Hi,
>
> I haven't got implemented the Anti-Spoofing in my Firewall-1 v4.1,
and I can
> see dropped packets by rule 0.
> How is it possible?
>
> Thanks in advance,
> Estela.
> _________________________________________________________________________
> Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
>
> ================================================================================
> To unsubscribe from this mailing list,
please see the instructions at
>
http://www.checkpoint.com/services/mailing.html
> ================================================================================