none
The system must be configured to prevent IP source routing

    Question

  • Hell,

    Configured the the policy. 

    Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options -> "MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)" to "Highest protection, source routing is completely disabled".

    But  don't know how to check the functionality of this rule. Windows is  protecting "protects against packet spoofing" or not.


    Friday, November 04, 2016 5:57 PM

All replies

  • Hi Vijay,

    Source routing allows a computer that sends a packet to specify the route that the packet takes. Attackers can use source routed packets to obscure their identity and location.

    If you configure the setting to 0: source routed packets are allowed.

    If you configure the setting to 1: source routed packets ignored when IP forwarding is enabled. If you have configured forwarder in your environment, the packet, which source route has been changed by forwarder, could be accepted. And the other packet which source route has been configured will be blocked.

    If you configure the setting to 2: source routed packets ignored when IP forwarding is enabled. All packer which have configure source route will be blocked.

    Best Regards,

    Jay


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, November 07, 2016 6:22 AM
    Moderator
  • Hi,

    Are there any updates?

    If the reply above has resolved your problem, please mark it as answer as it would be helpful to anyone who encounters the similar issue.

    Thank you.

    Best Regards,

    Jay


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, November 14, 2016 6:38 AM
    Moderator