[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Anti-spoofing and sendmail
What type do I use to create an "external mail address"? I had simply used a workstation type object and assigned it the ip address of the external firewall interface... [...] [...] You want to remove the FW object and add object for external mail address to that group.. Good Luck Stanley > Hello all, > > Some quick questions on anti-spoofing and sendmail. > > We were using and IDS script to send e-mail alerts from our firewall (4.1). > We recently activated anti-spoofing on the firewall's interfaces and the mail no > longer arrives. > In the fw log I noticed that sendmail was using the address of the firewalls > external interface as a source address and was therefore dropping the packets > (rule 0 - spoofing). > Anti-spoofing on the internal interface was configured with "This net", so I > created a group containing the Internal network object and a new workstation > object I created giving it the firewall's external interface IP and set this as > the "Specific" valid address. > > The packets still get dropped on rule 0 - spoofing. > > Does the firewall service need to be restarted for spoofing rules to take > effect? > > Is there something else I'm not thinking about? > > Thanks! > > Michael > ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|