[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] How to disable "local interface address spoofing" logging?
Greetings! On Tue, 21 Oct 2003 14:22:16 +0200 Matteo Masserini <[email protected]> wrote: > I've a firewall (NG FP3 and AI) dropping lots of packets from > 127.0.0.1. This generates "local interface address spoofing" and > "loopback address spoofing" logs. Does anybody know how to disable > this logging? If you get those from the loopback interface (on Linux that's interface "lo"), configure that interface with the 127.0.0.0/8 mask in your firewall object. If you receive packets with source IP 127.0.0.1 from a different ("real") interface, you've got an address spoofing coming into your firewall you should really have a look into. Especially if the interface in question comes from external... Bye Volker Tanger ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|