i missed the point of this at first, as i'm sure you can tell. --- Tony Rall <[EMAIL PROTECTED]> wrote: > On Saturday, 2001/10/13 at 14:12 MST, bob bobing > <[EMAIL PROTECTED]> wrote: > > Are you sure it can't find, deny, and log spoofed > connections? > > > > > http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v53/syslog/pixemapa.htm > > > > search for spoof... > > You're right, Pix 5.2 appears to have added support > for blocking source > addresses that aren't routed out the same interface > they arrived on. Note > that no machine can know for sure that a source > address has been spoofed; > the most it can conclude is that some addresses are > not to be expected on > some interfaces. >
__________________________________________________ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls