We have a Sonicwall TZ170. We were having problems with the unit prior to this so we had it replaced with a brand new unit.
The logs are still showing this one line and the whole router crashes once a day or once every 2 days. but the odd thing is prior to the sonicwall we had a cheap netgear router and never had a problem once. This is the message we get.
12/01/2004 09:13:08.480 IP spoof dropped 192.168.0.160, 137, LAN 192.168.0.152, 137, OPT MAC address: 00.08.74.32.80.53
I read up on IP SPOOFing but what I don't get is that the IP addresses keep changing. What causes this? Has anyone seen this before?
Our envoirnment is Static IP's on most of the clients (about 12-15), an ad server, and a exchange server.