I am trying to get my SecureClient laptops to be able to update the
SecureClient site when they are on the LAN. The problem is that the
managment server has a legal "NATed" IP address in the SecureClient config.
When the clients tries to update their site on the LAN, they try to go to
the external address, which the firewall (default gateway) NATs to its true
internal address.
I added a rule to deal with the routing and some NAT issues. The problem now
is that I get a "local interface address spoofing" error message (rule 0). I
have turned off all anti-spoofing rules in the firewall objects and turned
off MAD (at least I think I have) on the mgmt station and firewall. No luck.
How do I turn off this spoofing protection or is it possible to config
SecureClient to automatically use a different IP for the server when
connected to the local network? Thanks.
-Tim
________________________ ______ ____ ___ __
Tim Russo
Xchange, Inc.
Sr. Security Engineer
EMail: [EMAIL PROTECTED]
Phone: 617.790.2803
FAX: 617.790.2857
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
