Thread Info
  • State Not Answered
  • Replies 15 replies
  • Subscribers 0 subscribers
  • Views 3578 views
  • Users 0 members are here
Options
Suggested

[8.160][BUG][FIXED] internal network spoofed

RFCat_vk_01
Hi,
after much pain I have identified why my internal network could not connect to the ASG, but IP addresses were correctly assigned.

I have disabled "SPOOF" checking 
Network security -> firewall -> advanced -> protocol handling -> Spoof protection -> off

and my network is now happy.

Regards

Ian M
Parents Reply Children
  • 0 in reply to kbr
    Hi kbr,
    this will be the last one for tonight, it is after midnight and alarm goes off at 6am.

    2011:03:02-12:34:05 cats-kingdom ulogd[5563]: id="2005" severity="info" sys="SecureNet" sub="packetfilter" name="IP spoofing drop" action="IP spoofing drop" fwrule="60008" initf="eth0.10" srcmac="0:1a:8c:7:95:78" dstmac="0:1b:21:24:c5:20" srcip="192.168.10.210" dstip="1.2.3.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="64" srcport="33518" dstport="2712" tcpflags="SYN" 
    2011:03:02-12:34:06 cats-kingdom ulogd[5563]: id="2005" severity="info" sys="SecureNet" sub="packetfilter" name="IP spoofing drop" action="IP spoofing drop" fwrule="60008" initf="eth0.111" srcmac="0:e:8:cd:b7:cb" dstmac="0:1b:21:24:c5:20" srcip="192.168.111.218" dstip="125.213.99.991" proto="17" length="562" tos="0x08" prec="0x60" ttl="250" srcport="5060" dstport="5060" 
    2011:03:02-12:34:08 cats-kingdom ulogd[5563]: id="2005" severity="info" sys="SecureNet" sub="packetfilter" name="IP spoofing drop" action="IP spoofing drop" fwrule="60008" initf="eth0.10" srcmac="0:c0:2[:D]e:cf:b2" dstmac="0:1b:21:24:c5:20" srcip="192.168.10.12" dstip="192.168.10.255" proto="17" length="229" tos="0x00" prec="0x00" ttl="30" srcport="138" dstport="138" 
    2011:03:02-12:34:08 cats-kingdom ulogd[5563]: id="2005" severity="info" sys="SecureNet" sub="packetfilter" name="IP spoofing drop" action="IP spoofing drop" fwrule="60008" initf="eth0.10" srcmac="0:1a:8c:7:95:78" dstmac="0:1b:21:24:c5:20" srcip="192.168.10.210" dstip="1.2.3.4" proto="6" length="52" tos="0x00" prec="0x00" ttl="64" srcport="33518" dstport="2712" tcpflags="SYN" 
    2011:03:02-12:34:10 cats-kingdom ulogd[5563]: id="2005" severity="info" sys="SecureNet" sub="packetfilter" name="IP spoofing drop" action="IP spoofing drop" fwrule="60008" initf="eth0.111" srcmac="0:e:8:cd:b7:cb" dstmac="0:1b:21:24:c5:20" srcip="192.168.111.218" dstip="125.213.99.991" proto="17" length="562" tos="0x08" prec="0x60" ttl="250" srcport="5060" dstport="5060" 
    2011:03:02-12:34:14 cats-kingdom ulogd[5563]: id="2005" severity="info" sys="SecureNet" sub="packetfilter" name="IP spoofing drop" action="IP spoofing drop" fwrule="60008" initf="eth0.111" srcmac="0:e:8:cd:b7:cb" dstmac="0:1b:21:24:c5:20" srcip="192.168.111.218" dstip="125.213.99.991" proto="17" length="562" tos="0x08" prec="0x60" ttl="250" srcport="5060" dstport="5060" 
    Ian M
Cookie Information Banner