Got it
Huawei Enterprise Support Community
Community Forums Security
The public network can’t...

The public network can’t access the device configured with the ip spoofing attac

Latest reply: Apr 9, 2016 15:45:35 1034 1 0 0 0
View the author 1#
1 The usg2200 directly linked to the public internet. It is double outlet, one is isp1, the other is isp2.
2 Do accurate routing with the isp1 network segment and default routing to isp2.
3 One of the isp1 PC can’t ping the outlet 2 address of usg2200, nor could telnet.
Alarm Information
None.

Like (0) Dislike (0) Favorite(0) Share Report
Previous: What Is the Matching Sequence of the Multiple NAT Outbound Policies Configured i
Next: Identical VRRP IDs Cause a VRRP Negotiation Failure
(0) (0)
2#
jack_6
Created Apr 9, 2016 15:45:35

Handling Process
Disable configuration IP spoofing attack prevention:
undo firewall defend ip-spoofing enable
The problem will be resolved.
Root Cause
1 analysis the data flows, under normal circumstances, the PC access export address from export 2 come out from export 1;
2 Check local policy, and did not do any traffic IP restrictions;
3 The data stream does not belong to the round-trip path inconsistent, because there is no undo firewall session link-type check;
4 It appears attack log in log summary:
    2011-12-04 09:01 wf %%01SEC/5/ATCKDF(l): AttackType:IP spoof attack; Receive Interface: GigabitEthernet0/0/0 ;
    proto:ICMP(4120,445) ; from 116.247.83.30 219.138.202.79 219.138.202.79 218.83.252.125 ; to 116.247.74.214 116.247.74.214
    116.247.74.214 116.247.74.214 ; begin time :2011/12/4 17:1:19; end time: 2011/12/4 17:1:45; total packets: 13;
5 View the configuration of attack defense, there is IP spoofing configuration:
    firewall defend ip-spoofing enable;
From the information above, the device filtered the packets because the data exists IP spoofing.


Suggestions
IP spoofing attack prevention mechanisms based on whether the route up to the source IP address, so the existence of false positives. When use it we need to look out.
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.