[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] Antispoofing and bootp
Erik, Thanks, for the info. If I do place the a network object of 0.0.0.0 in the antispoof group for my internal interface. Would I have any security ramifications in doing that? Thanks AC > >My question is do I have to create a Network object of 255.255.255.255 and place > it in the AntiSpoof group? >Will this stop the CPMAD from activating? > If you want the DHCP requests to pass through the Anti-spoofing settings, you will have to add the 0.0.0.0 in the AntiSpoof group. Since the bootp/dhcp-client does not have any ip-address when they boot up. The 255.255.255.255 is the destination address and will not help the situation........ /erik ---------------------------------------------------------------- I am having some antispoofing configuration problems. CPMAD keeps on getting ativated by bootp reguests. When I look in the Check Point Logviewer I see this: Service: bootp Source: (blank) Destination: 255.255.255.255 Proto: udp Rule: 0 S_Port: 68 I am running Check Point v4.1 sp3 I have configured and enable CPMAD. I have 4 network cards installed and have configured this under the Interface properties->Security under Valid Address Internet adapter El90x1 - Others DMZ01 El90x2 - Others DMZ02 El90x3 - Others Internal LAN El90x4 - Specific->AntiSpoof-Group The Antispoof group consists of my two internal networks. I'm also running DHCP in my internal network. My question is do I have to create a Network object of 255.255.255.255 and place it in the AntiSpoof group? Will this stop the CPMAD from activating? Thanks AC ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|