About IP Source Route Attacks

To find the route that packets take through your network, attackers use IP source route attacks. The attacker sends an IP packet and uses the response from your network to get information about the operating system of the target computer or network device.

The default configuration of the Firebox is to drop IP source route attacks.

To protect against source route attacks, from Fireware Web UI:

  1. Select Firewall > Default Packet Handling.
    The Default Packet Handling page appears.

Screen shot of the Default Packet Handling page

  1. Select or clear the Drop IP Source Route check box.
  2. Click Save.

To protect against source route attacks, from Policy Manager:

  1. Click .
    Or, select Setup > Default Threat Protection > Default Packet Handling.
    The Default Packet Handling dialog box appears.

Screen shot of the Default Packet Handling dialog box

  1. Select or clear the Drop IP Source Route check box.
  2. Click OK.

See Also

About Default Packet Handling Options

Give Us Feedback     Get Support     All Product Documentation     Technical Search