Hello. I am currently configuring our new Firebox 4500. Right now, I have it only hooked up to our LAN - trusted network. Over the past couple of days, it started logging many "spoofed source address" deny messages coming from a couple of computers on our LAN/WAN. Any idea on how to correct this problem?
Here are a couple of log entries:
10/15/03 11:08 firewalld[112]: deny out eth1 92 icmp 20 126 192.168.52.20 192.168.1.75 8 0 (spoofed source address)
10/15/03 11:08 firewalld[112]: deny out eth1 106 udp 20 126 192.168.46.20 192.168.1.75 1026 161 (spoofed source address)
10/15/03 11:52 firewalld[112]: deny out eth1 92 icmp 20 126 192.168.11.22 192.168.1.75 8 0 (spoofed source address)
Thanks!
Here are a couple of log entries:
10/15/03 11:08 firewalld[112]: deny out eth1 92 icmp 20 126 192.168.52.20 192.168.1.75 8 0 (spoofed source address)
10/15/03 11:08 firewalld[112]: deny out eth1 106 udp 20 126 192.168.46.20 192.168.1.75 1026 161 (spoofed source address)
10/15/03 11:52 firewalld[112]: deny out eth1 92 icmp 20 126 192.168.11.22 192.168.1.75 8 0 (spoofed source address)
Thanks!