Chakravarthy Girda wrote: > No I don't have /etc/shorewall/rfc1918. I started with fresh install. > Now I am into fine tuning my firewall. Thank you very much for your help. > I see a repeated lines of the following ? Is this because of the > logmartians entry in my interfaces file ? > > net eth1 detect tcpflags,routefilter,blacklist,logmartians > net eth4 detect tcpflags,routefilter,blacklist,logmartians
The fact that packets are being checked at this level is due to the 'routefilter' option; the fact that failures are being logged is due to 'logmartians'. > > **************** LOG FILE ****************** > > Jan 28 13:31:55 agni kernel: martian source 255.255.255.255 from > 169.254.100.100, on dev eth1 That says that a limited broadcast was received on eth1 from 169.254.100.100. The route to 169.254.100.100 is not out of eth1; that's why the packet is being reported as a martian. ------------------------------------------------------------------------------ This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
