We have multiple sites, each with a sonicwall. I've set up AWS VPN connections using the built in utility. Today I was adding a new route for an instance in AWS. For most sites it worked as intended, and I was able to ping from the instance down to a device on the network. However 3 sites (out of 10) I could not ping. I ran a packet capture and all 3 returned Drop Code: 498(IP Spoof check failed recorded in module network). I confirmed that the working sites did not have IP Spoof checking disabled in the diag. I've also tried clearing the ARP cache with no change. Any ideas why these specific sites won't work?
↧