How to disable the IP spoofing detection feature in Internet Security and Acceleration Server 2000 (284811)


The information in this article applies to:

  • Microsoft Internet Security and Acceleration Server 2000
This article was previously published under Q284811
IMPORTANT: This article contains information about modifying the registry. Before you modify the registry, make sure to back it up and make sure that you understand how to restore the registry if a problem occurs. For information about how to back up, restore, and edit the registry, click the following article number to view the article in the Microsoft Knowledge Base:

256986 Description of the Microsoft Windows Registry

IN THIS TASK

SUMMARY

This step-by-step article describes how to disable the IP Spoof Detection feature in Internet Security and Acceleration (ISA) Server 2000.

back to the top

Disable IP Spoof Detection

WARNING: If you use Registry Editor incorrectly, you may cause serious problems that may require you to reinstall your operating system. Microsoft cannot guarantee that you can solve problems that result from using Registry Editor incorrectly. Use Registry Editor at your own risk.

By default, IP Spoof detection is enabled in ISA Server 2000. Although there is no way to disable this feature in the ISA Management MMC snap-in, you can turn off this feature in the Windows registry. To do so:
  1. Click Start, click Run, type regedit, and then click OK.
  2. Locate the following registry subkey:

    HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/MspFltEx/Parameters

    If the Parameters key is not displayed, create it. To do this, point to New on the Edit menu, and then click Key. Name the key Parameters.
  3. Right-click Parameters, point to New, and then click DWORD Value.
  4. Name the value SpoofDetection.
  5. Right-click SpoofDetection, and then click Modify.
  6. In the Value data box, type 0 (zero), and then click OK.

    WARNING: This setting disables IP Spoof detection on the ISA Server 2000-based computer. To enable IP Spoof detection, set the SpoofDetection value to 1 (one). This is the default value.
  7. Quit Registry Editor, and then restart the ISA Server 2000 services.
back to the top

REFERENCES

For additional information, click the following article number to view the article in the Microsoft Knowledge Base:

300876 How to connect your company to the Internet by using ISA Server 2000 with Windows 2000

For a description of IP Spoofing, please visit the following Webopedia Web site:

http://isp.webopedia.com/TERM/I/IP_spoofing.html

Microsoft provides third-party contact information to help you find technical support. This contact information may change without notice. Microsoft does not guarantee the accuracy of this third-party contact information.


back to the top
Modification Type:MajorLast Reviewed:11/17/2004
Keywords:kbHOWTOmaster KB284811
©2004 Microsoft Corporation. All rights reserved.