Link to home
Start Free TrialLog in
Avatar of ro8inmorgan
ro8inmorgan

asked on

Pix anti spoofing problem

I've got a weird thing going on between my Pix and Windows servers...

I have netbios enabled on my servers as a few of the software running on them is using netbios names to access certain files.. What happends is that the servers do a Netbios name request on the broadcast address x.x.x.255 which then my Pix intercepts and see's it as a spoofing attack..

Not a bad thing in general but my pix logs are filling up with deny udp reverse path check from x.x.x.x to x.x.x.255 on interface outside messages.. Which is pretty annoying.. Is there some way to get around this??

I have anti spoofing enabled on both interfaces inside and outside.. Disabling this on the interface outside stops these messages but I think is not a good idea to do..

My servers are on interface inside and my connection is on outside..

Any suggestions are welcome.

ASKER CERTIFIED SOLUTION
Avatar of kmotaweh
kmotaweh

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of ro8inmorgan
ro8inmorgan

ASKER

Ok I disabled the anti spoofing on the internal interface.. But the deny udp messages still come in my Pix log as their on the outside interface coming from my servers sitting on the inside interface..