ro8inmorgan
asked on
Pix anti spoofing problem
I've got a weird thing going on between my Pix and Windows servers...
I have netbios enabled on my servers as a few of the software running on them is using netbios names to access certain files.. What happends is that the servers do a Netbios name request on the broadcast address x.x.x.255 which then my Pix intercepts and see's it as a spoofing attack..
Not a bad thing in general but my pix logs are filling up with deny udp reverse path check from x.x.x.x to x.x.x.255 on interface outside messages.. Which is pretty annoying.. Is there some way to get around this??
I have anti spoofing enabled on both interfaces inside and outside.. Disabling this on the interface outside stops these messages but I think is not a good idea to do..
My servers are on interface inside and my connection is on outside..
Any suggestions are welcome.
I have netbios enabled on my servers as a few of the software running on them is using netbios names to access certain files.. What happends is that the servers do a Netbios name request on the broadcast address x.x.x.255 which then my Pix intercepts and see's it as a spoofing attack..
Not a bad thing in general but my pix logs are filling up with deny udp reverse path check from x.x.x.x to x.x.x.255 on interface outside messages.. Which is pretty annoying.. Is there some way to get around this??
I have anti spoofing enabled on both interfaces inside and outside.. Disabling this on the interface outside stops these messages but I think is not a good idea to do..
My servers are on interface inside and my connection is on outside..
Any suggestions are welcome.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER