- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
12-25-2016 11:17 PM
Hi,
How palo alto blocks if ip address is spoofed .
Why does it not work in vwire mode
Thanks
12-26-2016 05:07 AM
The Palo Alto uses the routing table to help determine if the address is spoofed.
https://live.paloaltonetworks.com/t5/Featured-Articles/Zone-protection-profiles/ta-p/70687
Quote:
Select the check box to enable protection against IP address spoofing. PAN-OS uses the routing table on the device to verify if the source IP of the traffic is arriving on the appropriate interface. If this is not the case the packet will be discarded.
Thus this is not applicable in v-wire mode that has no routing table and is just a virtual wire connecting two devices.
12-26-2016 05:07 AM
The Palo Alto uses the routing table to help determine if the address is spoofed.
https://live.paloaltonetworks.com/t5/Featured-Articles/Zone-protection-profiles/ta-p/70687
Quote:
Select the check box to enable protection against IP address spoofing. PAN-OS uses the routing table on the device to verify if the source IP of the traffic is arriving on the appropriate interface. If this is not the case the packet will be discarded.
Thus this is not applicable in v-wire mode that has no routing table and is just a virtual wire connecting two devices.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!