>Hi List,
>
>Is anyone aware of why Check Point decided to take the path of defining
networks behind the interface and not doing it the PIX
>way of examining the routing table? Is there any advantages to this
method? If you are using the routing table method there is
>far less configuration, you could enable anti-spoofing with a checkbox.
>
>Cheers,
>JT
Wouldn't it be difficult to do asymetric routing if you do anti-spoofing
based only on the routing tables?
There are some cases (unfortunately) where this is desireable.
Just my $.02
Hans-Christian
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
