I was wondering if someone could give me your input on anti-spoofing. I have 3 interfaces on my FW:
DMZ 192.168.2.1
External 63.64.1.1
Internal 192.168.1.1
I have a DNS server and web server sitting on the DMZ. Which needs to be open to the public.
I have my email server and one web server on the Internal. They need to be accessible to the public as well. All addresses that are for the public are nated. Could someone tell me how you would set up the anti-spoofing on the FW that won't affect my setup but protect me? I noticed in my logs that someone was trying to get in using private addresses. Thanks for your help in advance. (I did look it up but I think its better to hear how others do it!) Kind of confusing....