troubleshooting Question

CheckPoint UTM450 Firewall ANti-spoofing problem

Avatar of kevalson
kevalsonFlag for United States of America asked on
Software FirewallsHardware FirewallsVPN
8 Comments1 Solution2595 ViewsLast Modified:
Packets get dropped on the Internal interface, and it the Tracker says it is because of Anti-Spoofing.
CheckPoint Internal = 172.17.192.1/30 --> 172.17.192.2/30-->172.17.1.0/24-->172.17.0.0/30--> 192.168.150.0/30-->172.16.0.0/30-->172.16.1.0/24 (My computer)

I am trying to ping out the CheckPoint from my computer.

I have defined the internal interface topology to be Specific to group 172.17.1.0/24 and 172.17.192.0/30.

Then, under the Anti-Spoofing of the Internal interface, I told it to ignore packets from 172.16.1.0/24.

It still said it was dropped due to anti-spoofing.

Even after I disabled anti-spoofing altogether on both the internal and external interfaces, it still would not work.
ASKER CERTIFIED SOLUTION
kevalson

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 8 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 8 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros