Internet Security and Acceleration Server 2004: How to disable the IP Spoof Detection feature in ISA Server 2004, ISA Server 2006, Microsoft Forefront Threat Management Gateway Medium Business Edition or Windows Essential Business Server 2008

SUPPORT SOLUTION:
By default, the IP Spoof Detection feature is enabled in Microsoft Internet Security and Acceleration (ISA) Server 2004, in Microsoft Internet Security and Acceleration (ISA) Server 2006, in Microsoft Forefront Threat Management Gateway Medium Business Edition, and in Windows Essential Business Server 2008. Although there is no way to disable this feature in the ISA Microsoft Management Console (MMC) snap-in, you can disable this feature in the Windows registry..To have us enable the IP Spoof Detection feature is for you, go to the “Fix it for me” section. If you’d rather enable the IP Spoof Detection feature yourself, go to the “Let me fix it myself” section.
.Fix it for me

To enable the IP Spoof Detection feature automatically, click the Fix this problem
link. Then, click
Run in the File Download
dialog box and follow the steps in this wizard.
a.button { background: url(/library/images/support/KBGraphics/PUBLIC/cn/FixItButton.jpg) no-repeat 0 0; width: 139px; height: 56px; display:block; cursor:pointer; } a.button:hover { background-position: bottom right; } Fix this problem Microsoft Fix it 50478Note this wizard may be in English only; however, the automatic fix also works for other language versions of Windows.Note
If you are not on the computer that has the problem, you can save the automatic fix to a flash drive or to a CD so that you can run it on the computer that has the problem.
.Let me fix it myself

Warning Serious problems might occur if you modify the registry incorrectly by using Registry Editor or by using another method. These problems might require that you reinstall the operating system. Microsoft cannot guarantee that these problems can be solved. Modify the registry at your own risk.To disable the IP Spoof Detection feature in the Windows registry yourself, follow these steps: Click Start, click Run, type regedit, and then click OK.Locate and then click the following registry subkey:HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/FwEng/ParametersIf the Parameters subkey is not displayed, follow these steps to create this subkey:Click theFwEng subkey.On the Edit menu, point to New, and then click Key. To name the key, type Parameters, and then press ENTER.Right-click Parameters, point to New, and then click DWORD Value.To name the value, type DisableSpoofDetection, and then press ENTER.Right-click DisableSpoofDetection, and then click Modify.

In the Value data box, type 1, and then click OK.

Warning This setting disables IP Spoof Detection. To enable IP Spoof Detection, set the DisableSpoofDetection value to 0. This is the default value.Exit Registry Editor, and then restart the ISA Server 2004/2006 Engine from the command line, with the command net stop fweng /y to stop the ISA Server Kernel Mode service and all depending services. After the engine stopped sucessfully start the Microsoft Firewall Service and the depended services with the command net start fwsrv..
For more information, click the following article numbers to view the articles in the Microsoft Knowledge Base:284811 

(http://support.microsoft.com/kb/284811/
)
How to disable the IP spoofing detection feature in Internet Security and Acceleration Server 2000832659 

(http://support.microsoft.com/kb/832659/
)
The IP Spoof Detection feature in ISA Server 2000 may drop legal packets on systems that have multiple external interfaces833786 

(http://support.microsoft.com/kb/833786/
)
Steps that you can take to help identify and to help protect yourself from deceptive (spoofed) Web sites and malicious hyperlinks.

For File Repair and Data Recovery, visit File Repair / Data Recovery