https://community.checkpoint.com/t5/Firewall-and-Security-Management/DNS-MX-record-null-prefix/m-p/32821#M58100 <HTML><HEAD></HEAD><BODY><P>This is related to CVE-2010-0024.</P><P>Presumably there is something related to the MX response being received from 4.2.2.2 that can cause a problem in some older, unpatched versions of Windows Server, which don't parse MX records properly.</P><P>By default, this signature is not enabled except on the Strict profile in Detect mode only.</P><P>If you think this is in error, you should open a TAC case OR add an exception in your Threat Prevention profile.</P></BODY></HTML> Thu, 14 Feb 2019 04:21:46 GMT PhoneBoy 2019-02-14T04:21:46Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/DNS-MX-record-null-prefix/m-p/32819#M58098 <HTML><HEAD></HEAD><BODY><P>This is a signature triggered on ips. So i just wanted to know when it will trigger.</P><P>Kindly help me with this</P></BODY></HTML> Wed, 13 Feb 2019 03:17:53 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/DNS-MX-record-null-prefix/m-p/32819#M58098 Sameer_Ahammed 2019-02-13T03:17:53Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/DNS-MX-record-null-prefix/m-p/32820#M58099 <HTML><HEAD></HEAD><BODY><P>The traffic is actually from mail gateway to 4.2.2.2(dns)</P></BODY></HTML> Wed, 13 Feb 2019 03:19:25 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/DNS-MX-record-null-prefix/m-p/32820#M58099 Sameer_Ahammed 2019-02-13T03:19:25Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/DNS-MX-record-null-prefix/m-p/32821#M58100 <HTML><HEAD></HEAD><BODY><P>This is related to CVE-2010-0024.</P><P>Presumably there is something related to the MX response being received from 4.2.2.2 that can cause a problem in some older, unpatched versions of Windows Server, which don't parse MX records properly.</P><P>By default, this signature is not enabled except on the Strict profile in Detect mode only.</P><P>If you think this is in error, you should open a TAC case OR add an exception in your Threat Prevention profile.</P></BODY></HTML> Thu, 14 Feb 2019 04:21:46 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/DNS-MX-record-null-prefix/m-p/32821#M58100 PhoneBoy 2019-02-14T04:21:46Z