How to disable the IP spoofing detection feature in Internet Security and Acceleration Server 2000

This step-by-step article describes how to disable the IP Spoof Detection feature in Internet Security and Acceleration (ISA) Server 2000.

Disable IP Spoof Detection

WARNING: If you use Registry Editor incorrectly, you may cause serious problems that may require you to reinstall your operating system. Microsoft cannot guarantee that you can solve problems that result from using Registry Editor incorrectly. Use Registry Editor at your own risk.

By default, IP Spoof detection is enabled in ISA Server 2000. Although there is no way to disable this feature in the ISA Management MMC snap-in, you can turn off this feature in the Windows registry. To do so:

1. Click Start, click Run, type regedit, and then click OK.
2. Locate the following registry subkey:
   HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/MspFltEx/Parameters
   If the Parameters key is not displayed, create it. To do this, point to New on the Edit menu, and then click Key. Name the key Parameters.
3. Right-click Parameters, point to New, and then click DWORD Value.
4. Name the value SpoofDetection.
5. Right-click SpoofDetection, and then click Modify.
6. In the Value data box, type 0 (zero), and then click OK.
   
   WARNING: This setting disables IP Spoof detection on the ISA Server 2000-based computer. To enable IP Spoof detection, set the SpoofDetection value to 1 (one). This is the default value.
7. Quit Registry Editor, and then restart the ISA Server 2000 services.

For additional information, click the following article number to view the article in the Microsoft Knowledge Base: For a description of IP Spoofing, please visit the following Webopedia Web site: Microsoft provides third-party contact information to help you find technical support. This contact information may change without notice. Microsoft does not guarantee the accuracy of this third-party contact information.