We are trying to test a firewall and we are currently facing the spoof
attack problem. The configuration is as follows.
____________
| |
Internal net -----Router ------|Firewall |------Router----Internet
------------
|
|
|
DMZ network
When I start the firewall packet filter, it continuously displays IP SPOOF
attack message on the screen. It displays the IP SPOOF attack from a host
from the internal network to a host in the DMZ network which is my proxy
server. Also, the server displays IP SPOOF attacks from all the servers on
the internet performing DNS queries on my DNS server which is in the DMZ
network.
We have defined the following rules
1. Allow all the traffic from the internal network to the DMZ network and
vice versa.
2. Allow all the traffic from the Internet to the DMZ network and vice
versa.
Note : These rules are defined for testing purposes only.
Any thoughts in resolving this problem. Any pointers or help will be highly
appreciated.
Bye..
TIA
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
