Greetings, I am trying to setup a static route on a Checkpoint firewall NG R55.
Scenario: Internal LAN 172.16.0.0/21 fw (def gateway) 172.16.2.1 rtr to new off 172.16.7.254
rtr AT new off 172.18.7.254 new office LAN 172.18.0.0/21
I have added the static route in the Nokia Voyager of the firewall.
within Checkpoint I have: created a network 172.18.0.0/21 created a rule to allow all traffic bi-directional between172.16.0.0/21 and 172.18.0.0/21
At a workstation on the 172.16 LAN I try to ping 172.18.7.254 (router on the 172.18 LAN)
The packets are dropped by the firewall with a message in the FW log "Address Spoofing"
If I set the static route on the local workstation everything is fine as it bypasses the firewall.
Any ideas as to what else I need to do?