> To prevent IP spoofing you must configure your router or firewall
> to block inside IP addresses from the internet.
>
> Let's say you use the IP range 157.168.9.x /28 for your DMZ servers.
>
> This means that addresses from this range can't come from the internet.
>
> So you block these kind of addresses that come from the internet
> into your LAN / DMZ.
>
> This way you prevent someone to spoof an IP address you are using
> in your internal LAN or DMZ.
>
> You must find out how you are going to block these addresses for
> the router / firewall you are using.
>
> There are more of there IP blocks you want to block coming from the
> internet. There are some fine resources on the internet available which
> explains this subject more thorough..
>
> Hope this helps,
>
> Greets,
>
> Brenno Hiemstra
>
>
>
>
> -----Original Message-----
> From: [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]]
> Sent: dinsdag 27 maart 2001 9:07
> To: [EMAIL PROTECTED]; [EMAIL PROTECTED];
> '[EMAIL PROTECTED]'
> Subject: ip spoofing
>
>
> hello,
>
> just wanna ask some helkp from you guys. we're using an http
> interface so
> that our clients can view their mails from the web, without
> configuring
> mail browsers like outlook express.... but it has been attacked just
> recently, it erased the /var/log where the httpd subdir resides,
> making it
> impossible to use the webmail. the hacker used ip spoofing, what i
> did is
> to create the same folders but i believe that it is still vulnerable
> to the
> attacks. what do u think should i do to stop ip spoofing.
>
> thanks!
>
> -
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
