This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
StevePearson
Advisor
‎2025-04-05 07:59 AM
Jump to solution

Anti-Spoofing on centrally managed 1535/1555 gateways

I'm trying to configure the anti-spoofing on some newly installed Spark 1535 and 1555 gateways. These are all centrally managed so i'd expect to be able to manage this from the topology tab of the gateway object however when I edit the interfaces here and look at the anti-spoofing tab i'm seeing the settings all greyed out. I can see what appear to be the current settings but I can't change anything. I'm also seeing some enabled and some disabled which is strange as all gateways have been built in the same way.

There are no settings on the device directly (device-advanced settings), and nothing in global properties, but it's almost like there is a global setting somewhere on the SMS that is preventing me from changing the anti-spoofing settings on the spark devices.

I've been through the admin guide looking for options but it doesn't mention anything that suggests that there is a global control for this.

Can anyone advise what I'm missing here please?

Thanks, Steve

3 Solutions

Accepted Solutions
the_rock
MVP Diamond
MVP Diamond
‎2025-04-05 11:18 AM
Jump to solution

Just checked in the lab...make sure attached option is set, should work then.

Andy

Best,
Andy
"Have a great day and if its not, change it"

View solution in original post

Preview file
64 KB
0 Kudos
Steffen_Appel
Advisor
‎2025-04-07 01:52 AM
Jump to solution

You have to set manual topology definition.

View solution in original post

the_rock
MVP Diamond
MVP Diamond
‎2025-04-10 03:46 AM
In response to StevePearson
Jump to solution

I do..its because thats ONLY available for external interface.

Andy

Best,
Andy
"Have a great day and if its not, change it"

View solution in original post

0 Kudos
8 Replies
the_rock
MVP Diamond
MVP Diamond
‎2025-04-05 11:08 AM
Jump to solution

Let me try this in the lab on smb object and will update you. I would logically assume for centrally managed, you must be able to do this, for sure.

Andy

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2025-04-05 11:18 AM
Jump to solution

Just checked in the lab...make sure attached option is set, should work then.

Andy

Best,
Andy
"Have a great day and if its not, change it"
Preview file
64 KB
0 Kudos
StevePearson
Advisor
‎2025-04-07 03:02 AM
In response to the_rock
Jump to solution

Hi Andy,

Perfect thanks!

This is the first time i've used centrally managed sparks so its been a learning curve! Looks like the anti-spoofing is either on or off with no options for detect/prevent as you get on the bigger gateways, so i'll need to be careful that I don't lock myself out as they are all quite a distance away!

Steve

0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2025-04-07 03:19 AM
In response to StevePearson
Jump to solution

Of course, no problem, glad we can help. Yes, Im always careful if making topology changes when accessing fw remotely, because one small mistake can lead to access being lost...

Andy

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
StevePearson
Advisor
‎2025-04-10 01:00 AM
In response to the_rock
Jump to solution

Hi Andy,

Still seeing options greyed out here.

Whilst the Option to enable Antispoofing is now available, the "Don not check packets from" option remains unavailable! (see attached).

Any idea why this would be?

Thanks,

Steve

anti-spoof.png

0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2025-04-10 03:46 AM
In response to StevePearson
Jump to solution

I do..its because thats ONLY available for external interface.

Andy

Best,
Andy
"Have a great day and if its not, change it"
0 Kudos
the_rock
MVP Diamond
MVP Diamond
‎2025-04-10 04:28 AM
In response to StevePearson
Jump to solution

Hey brother,

Just for the reference, I attached couple of screenshots from my lab and sorry for my drawing skills, they are NON-EXISTANT 🤣

Andy

Best,
Andy
"Have a great day and if its not, change it"
Preview file
182 KB
Preview file
196 KB
0 Kudos
Steffen_Appel
Advisor
‎2025-04-07 01:52 AM
Jump to solution

You have to set manual topology definition.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events