Ed,
Create a workstation object with the address
of x.y.z.255 or 255.255.255.255 and create a
rule stating that traffic destined for the
'broadcast' object should be dropped, not
logged.
Stephen Mack posted:
I have a host object 0.0.0.255 with a subnet of 0.0.0.255 that
will catch broadcasts of type *.*.*.255. (Ignore the error when
creating this object.) We use this to catch and ignore classC
broadcasts. It should be possible to modify this to catch other
subnets.
Robert
- -
Robert P. MacDonald, Network Engineer
Team Lead, e-Business Infrastructure
G o r d o n F o o d S e r v i c e
Voice: +1.616.261.7987 email: [EMAIL PROTECTED]
>>> "Ed Davidson" <[EMAIL PROTECTED]> 11/28/00 11:32:08 AM >>>
>
>Logging Rule 0 makes my logs unusable as I am getting all of my denied broadcasts
>logged as rule0.
>This is 1000's of log entries per minute.
>
>Quote
>"To turn it off, go to Policy, then select properties, then click on the
>security tab and uncheck the log implied rule.
>then save your changes.
>
>Regards,
>
>Mohamed Hassan
>CCSA, CCSE"
>
>THIS DOESN'T WORK :( I did this and I am still getting these log entries.
>
>HELP!
>
>
>Edwin Davidson
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
