How to keep an internal node from spoofing an internal server’s IP and thereby getting the server blocked by active defenses?

In an internal network, all machines are firewalled from each other. The firewall has port scan detection and blocking mechanism (say, psd module of iptables).

Question: What are the ways I can block internal port scans whil… Continue reading How to keep an internal node from spoofing an internal server’s IP and thereby getting the server blocked by active defenses?