About IP Source Route Attacks

To find the route that packets take through your network, attackers use IP source route attacks. The attacker sends an IP packet and uses the response from your network to get information about the operating system of the target computer or network device.

The default configuration of the Firebox is to drop IP source route attacks.

To protect against source route attacks, from Fireware Web UI:

Select Firewall > Default Packet Handling.
The Default Packet Handling page opens.

Screen shot of the Default Packet Handling page

Select or clear the Drop IP Source Route check box.
Click Save.

To protect against source route attacks, from Policy Manager:

Click .
Or, select Setup > Default Threat Protection > Default Packet Handling.
The Default Packet Handling dialog box opens.

Screen shot of the Default Packet Handling dialog box

Select or clear the Drop IP Source Route check box.
Click OK.

Related Topics

About Default Packet Handling Options

Give Us Feedback ● Get Support ● All Product Documentation ● Technical Search