thats just it... it wasnt any of my IP's :) but apparently one the little MCSE's here incorrectly configured a 2nd NIC...hence the spoof. And hence me not getting why it was spoofing a NAT addy which I never had on my network :)
-----Original Message----- From: TD - Sales International Holland B.V. [mailto:[EMAIL PROTECTED]] Sent: Monday, October 22, 2001 5:56 AM To: Deon Grobler Subject: Re: IPspoof in firewall logs You appearantly have no fear :-) I can't help you with this problem (sorry bout that) but I can tell you it might not be wise to post your IP's. You might wanna change the IP's in your logs next time, they aren't really needed anyways and there are a lot of bad people on this list also regards On Thursday 18 October 2001 19:43, you wrote: > Hiya guys > > I am getting this in my firewall logs which have been lasting for around 2 > days now and can't seem to get anymore info on it. I am using a sonicwall > firewall. Can anyone possibly help me find out how to solve this problem? > > 10/18/2001 11:53:18.240 - IP spoof detected - Source:10.2.0.4, 137, LAN - > Destination:63.102.226.36, 137, WAN - MAC address: 00.B0.D0.F3.6F.4A - > > thanks > > Deon Grobler - Systems Engineer > [EMAIL PROTECTED] > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > Bluewave USA Inc. - Online Creations > http://www.bluewave.com/ > Tel. +1 (212) 509 1520 x240 > 110 Wall Street, 10th Floor > New York, NY 10005. USA > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
