Shorewall users - Aug 2012 - Reconfigured shorewall now getting martians

Hi everyone,

i recently reconfigured shorewall and now I''m receiving martians
messages.

I had the following configuration:

Eth0 > Internet
Eth1 > LAN
Eth2 > Management(DMZ)

Eth0 and eth1 both have no IP and are part of Bridge br0.

Due to the lack of the ability of NIC eth0 running 1000Mb/s, I had to
reconfigure shorewall to the following:

Eth0 > management(DMZ)
Eth1 > LAN
Eth2 > Internet

Br0 : eth1+ eth 2

Therefore I edited the files zones and interfaces.

But now I keep getting the following messages:


/var/log/messages:Aug 14 10:03:34 shwall02 kernel: martian source 10.141.8.0
from 0.0.0.0, on dev eth0

Eth0 has a IP adress 10.141.8.x  (the same ip adress eth2 had as  it was in the
dmz)

Could anybody tell me what I did wrong ?

Best Regards
Alex



------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today''s security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/

On 08/15/2012 04:33 AM, Alexander.Eck@Heidelberg.de
wrote:
> Hi everyone,
>
> i recently reconfigured shorewall and now I’m receiving martians messages.
>
> I had the following configuration:
>
> Eth0 > Internet
>
> Eth1 > LAN
>
> Eth2 > Management(DMZ)
>
> Eth0 and eth1 both have no IP and are part of Bridge br0.
>
> Due to the lack of the ability of NIC eth0 running 1000Mb/s, I had to
> reconfigure shorewall to the following:
>
> Eth0 > management(DMZ)
>
> Eth1 > LAN
>
> Eth2 > Internet
>
> Br0 : eth1+ eth 2
>
> Therefore I edited the files zones and interfaces.
>
> But now I keep getting the following messages:
>
> /var/log/messages:Aug 14 10:03:34 shwall02 kernel: martian source
> 10.141.8.0 from 0.0.0.0, on dev eth0
>
> Eth0 has a IP adress 10.141.8.x  (the same ip adress eth2 had as  it was
> in the dmz)
>
> Could anybody tell me what I did wrong ?
Not without seeing the output of ''shorewall dump''.

-Tom
-- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car
http://shorewall.net \________________________________________________



------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today''s security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/

Hi Tom,

I''m sorry... i forgot to add the dump file.

I attached the file. 

Thanks for your help

Best Regards

Alex

-----Ursprüngliche Nachricht-----
Von: Tom Eastep [mailto:teastep@shorewall.net] 
Gesendet: Mittwoch, 15. August 2012 16:07
An: shorewall-users@lists.sourceforge.net
Betreff: Re: [Shorewall-users] Reconfigured shorewall now getting martians

On 08/15/2012 04:33 AM, Alexander.Eck@Heidelberg.de
wrote:
> Hi everyone,
>
> i recently reconfigured shorewall and now I''m receiving martians
messages.
>
> I had the following configuration:
>
> Eth0 > Internet
>
> Eth1 > LAN
>
> Eth2 > Management(DMZ)
>
> Eth0 and eth1 both have no IP and are part of Bridge br0.
>
> Due to the lack of the ability of NIC eth0 running 1000Mb/s, I had to 
> reconfigure shorewall to the following:
>
> Eth0 > management(DMZ)
>
> Eth1 > LAN
>
> Eth2 > Internet
>
> Br0 : eth1+ eth 2
>
> Therefore I edited the files zones and interfaces.
>
> But now I keep getting the following messages:
>
> /var/log/messages:Aug 14 10:03:34 shwall02 kernel: martian source
> 10.141.8.0 from 0.0.0.0, on dev eth0
>
> Eth0 has a IP adress 10.141.8.x  (the same ip adress eth2 had as  it 
> was in the dmz)
>
> Could anybody tell me what I did wrong ?
Not without seeing the output of ''shorewall dump''.

-Tom
-- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car
http://shorewall.net \________________________________________________



------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today''s security and
threat landscape has changed and how IT managers can respond. Discussions will
include endpoint security, mobile security and the latest in malware threats.
http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users


------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today''s security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/