[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] firewall log messages
It when a packet is destined for a device but sourced from that device. Variables Client 10.10.10.10 Sever 11.11.11.11 Client spoofs 11.11.11.11 and send a packet destined for 11.11.11.11 which results in a loop back condition and could cause the server to slow or stop. This is a CPMAD IDS function. Some say CPMAD works some (even checkpoint) don't recommend CPMAD. -----Original Message----- From: Josef Klapsch [mailto:[email protected]] Sent: Friday, August 10, 2001 4:05 AM To: [email protected] Subject: [FW1] firewall log messages Hi, does anyone now what these messages in the firewall log mean? "130" "9Aug2001" " 0:09:35" "accept" "" "" "" "ip" "" "" "" "" "" "" "" "" "MAD" " additionals: attack=land_attack" "131" "9Aug2001" " 0:09:35" "accept" "" "" "" "ip" "" "" "" "" "" "" "" "" "MAD" " additionals: attack=land_attack" our config: Winnt 4.0 SP6a modul and management Firewall 1 SP4 incl. Hotfixes fmt and rdp vpn accelerator card thanks in advance Josef ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|