Shorewall users - Nov 2013 - how to stop broadcast on specific interface?

i am reaving lots of martian broadcats

Nov  8 15:37:57 firewall kernel: [  895.708393] martian source 192.168.0.3
from 192.168.0.1, on dev eth0
Nov  8 15:37:57 firewall kernel: [  895.708399] ll header:
ff:ff:ff:ff:ff:ff:90:f6:52:3f:65:c0:08:00
Nov  8 15:37:59 firewall kernel: [  897.711647] martian source 192.168.0.3
from 192.168.0.1, on dev eth0
Nov  8 15:37:59 firewall kernel: [  897.711654] ll header:
ff:ff:ff:ff:ff:ff:90:f6:52:3f:65:c0:08:00


LOG_MARTIANS= (Yes|No)
no matter if above variable is yes or no, logs are keep coming.

echo "0" > /proc/sys/net/ipv4/conf/eth0/rp_filter

when i change the value 1 to 0, and restart the shorewall by using the
command "shorewall restart" it automatically change the value from 0
to 1.


can anyone tell me how can i stop these logs. actually this is getting
really big pain and this broadcast is of my wireless which i stil have to
troubleshoot but my messages log file is growing day by day.and i can not
troubleshoot from /var/log/message file as there is lots of entries for
whole day log.

any help will be highly appreciated.

Thanks,


------------------------------------------------------------------------------
November Webinars for C, C++, Fortran Developers
Accelerate application performance with scalable programming models. Explore
techniques for threading, error checking, porting, and tuning. Get the most 
from the latest Intel processors and coprocessors. See abstracts and register
http://pubads.g.doubleclick.net/gampad/clk?id=60136231&iu=/4140/ostg.clktrk

On 11/8/2013 3:02 AM, Muhammad Yousuf Khan wrote:
> i am reaving lots of martian broadcats
> 
> Nov  8 15:37:57 firewall kernel: [  895.708393] martian source
> 192.168.0.3 from 192.168.0.1, on dev eth0
> Nov  8 15:37:57 firewall kernel: [  895.708399] ll header:
> ff:ff:ff:ff:ff:ff:90:f6:52:3f:65:c0:08:00
> Nov  8 15:37:59 firewall kernel: [  897.711647] martian source
> 192.168.0.3 from 192.168.0.1, on dev eth0
> Nov  8 15:37:59 firewall kernel: [  897.711654] ll header:
> ff:ff:ff:ff:ff:ff:90:f6:52:3f:65:c0:08:00
> 
> 
> LOG_MARTIANS= (Yes|No)
> no matter if above variable is yes or no, logs are keep coming.
> 
> echo "0" > /proc/sys/net/ipv4/conf/eth0/rp_filter
> 
> when i change the value 1 to 0, and restart the shorewall by using the
> command "shorewall restart" it automatically change the value
from 0 to 1.
> 
> 
> can anyone tell me how can i stop these logs. actually this is getting
> really big pain and this broadcast is of my wireless which i stil have
> to troubleshoot but my messages log file is growing day by day.and i can
> not troubleshoot from /var/log/message file as there is lots of entries
> for whole day log.
> 
> any help will be highly appreciated.
Which Shorewall version?

-Tom
-- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car
http://shorewall.net \________________________________________________



------------------------------------------------------------------------------
November Webinars for C, C++, Fortran Developers
Accelerate application performance with scalable programming models. Explore
techniques for threading, error checking, porting, and tuning. Get the most 
from the latest Intel processors and coprocessors. See abstracts and register
http://pubads.g.doubleclick.net/gampad/clk?id=60136231&iu=/4140/ostg.clktrk

On 11/8/2013 6:45 AM, Tom Eastep wrote:
> On 11/8/2013 3:02 AM, Muhammad Yousuf Khan wrote:
>> i am reaving lots of martian broadcats
>>
>> Nov  8 15:37:57 firewall kernel: [  895.708393] martian source
>> 192.168.0.3 from 192.168.0.1, on dev eth0
>> Nov  8 15:37:57 firewall kernel: [  895.708399] ll header:
>> ff:ff:ff:ff:ff:ff:90:f6:52:3f:65:c0:08:00
>> Nov  8 15:37:59 firewall kernel: [  897.711647] martian source
>> 192.168.0.3 from 192.168.0.1, on dev eth0
>> Nov  8 15:37:59 firewall kernel: [  897.711654] ll header:
>> ff:ff:ff:ff:ff:ff:90:f6:52:3f:65:c0:08:00
>>
>>
>> LOG_MARTIANS= (Yes|No)
>> no matter if above variable is yes or no, logs are keep coming.
>>
>> echo "0" > /proc/sys/net/ipv4/conf/eth0/rp_filter
>>
>> when i change the value 1 to 0, and restart the shorewall by using the
>> command "shorewall restart" it automatically change the value
from 0 to 1.
>>
>>
>> can anyone tell me how can i stop these logs. actually this is getting
>> really big pain and this broadcast is of my wireless which i stil have
>> to troubleshoot but my messages log file is growing day by day.and i
can
>> not troubleshoot from /var/log/message file as there is lots of entries
>> for whole day log.
>>
>> any help will be highly appreciated.
> 
> Which Shorewall version?
Also, what does the /etc/shorewall/interfaces entry for eth0 look like?

-Tom
-- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car
http://shorewall.net \________________________________________________



------------------------------------------------------------------------------
November Webinars for C, C++, Fortran Developers
Accelerate application performance with scalable programming models. Explore
techniques for threading, error checking, porting, and tuning. Get the most 
from the latest Intel processors and coprocessors. See abstracts and register
http://pubads.g.doubleclick.net/gampad/clk?id=60136231&iu=/4140/ostg.clktrk

here is the details.

ii  shorewall                           4.4.11.6-3+squeeze1
Shoreline Firewall, netfilter configurator

###############################################################################
#ZONE   INTERFACE       BROADCAST       OPTIONS
net     eth1            detect
dhcp,tcpflags,nosmurfs,routefilter,logmartians
loc     eth0            detect          tcpflags,nosmurfs,routefilter
#loc     eth0            detect
tcpflags,nosmurfs,routefilter,logmartians


------------------------------------------------------------------------------
November Webinars for C, C++, Fortran Developers
Accelerate application performance with scalable programming models. Explore
techniques for threading, error checking, porting, and tuning. Get the most 
from the latest Intel processors and coprocessors. See abstracts and register
http://pubads.g.doubleclick.net/gampad/clk?id=60136231&iu=/4140/ostg.clktrk

i notice something.

when wrote the below line in "interface" file.
loc     eth0            detect          tcpflags,nosmurfs,routefilter

and change the variable "LOG_MARTIANS=No" it stop martian logging
completely, however i do not want to stop martian logging on my internet
interface which is eth1 any idea.

Thanks


------------------------------------------------------------------------------
November Webinars for C, C++, Fortran Developers
Accelerate application performance with scalable programming models. Explore
techniques for threading, error checking, porting, and tuning. Get the most 
from the latest Intel processors and coprocessors. See abstracts and register
http://pubads.g.doubleclick.net/gampad/clk?id=60136231&iu=/4140/ostg.clktrk

On 11/08/2013 08:04 AM, Muhammad Yousuf Khan wrote:
> i notice something.
>
> when wrote the below line in "interface" file.
> loc     eth0            detect          tcpflags,nosmurfs,routefilter
>
> and change the variable "LOG_MARTIANS=No" it stop martian logging
> completely, however i do not want to stop martian logging on my internet
> interface which is eth1 any idea.
>
Go to http://www.shorewall.net/manpages/shorewall.conf.html and read the 
Important notice under LOG_MARTIANS.

-Tom
-- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car
http://shorewall.net \________________________________________________

------------------------------------------------------------------------------
November Webinars for C, C++, Fortran Developers
Accelerate application performance with scalable programming models. Explore
techniques for threading, error checking, porting, and tuning. Get the most 
from the latest Intel processors and coprocessors. See abstracts and register
http://pubads.g.doubleclick.net/gampad/clk?id=60136231&iu=/4140/ostg.clktrk

Thanks, i went though the details and at first i didnt grasp the context
out of the pessage however. after your helpful email i understood the
actual meaning.

Thanks,


On Fri, Nov 8, 2013 at 10:00 PM, Tom Eastep <teastep@shorewall.net> wrote:
> On 11/08/2013 08:04 AM, Muhammad Yousuf Khan wrote:
> > i notice something.
> >
> > when wrote the below line in "interface" file.
> > loc     eth0            detect          tcpflags,nosmurfs,routefilter
> >
> > and change the variable "LOG_MARTIANS=No" it stop martian
logging
> > completely, however i do not want to stop martian logging on my
internet
> > interface which is eth1 any idea.
> >
>
> Go to http://www.shorewall.net/manpages/shorewall.conf.html and read the
> Important notice under LOG_MARTIANS.
>
> -Tom
> --
> Tom Eastep        \ When I die, I want to go like my Grandfather who
> Shoreline,         \ died peacefully in his sleep. Not screaming like
> Washington, USA     \ all of the passengers in his car
> http://shorewall.net \________________________________________________
>
>
>
------------------------------------------------------------------------------
> November Webinars for C, C++, Fortran Developers
> Accelerate application performance with scalable programming models.
> Explore
> techniques for threading, error checking, porting, and tuning. Get the most
> from the latest Intel processors and coprocessors. See abstracts and
> register
>
http://pubads.g.doubleclick.net/gampad/clk?id=60136231&iu=/4140/ostg.clktrk
> _______________________________________________
> Shorewall-users mailing list
> Shorewall-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/shorewall-users
>

------------------------------------------------------------------------------
November Webinars for C, C++, Fortran Developers
Accelerate application performance with scalable programming models. Explore
techniques for threading, error checking, porting, and tuning. Get the most 
from the latest Intel processors and coprocessors. See abstracts and register
http://pubads.g.doubleclick.net/gampad/clk?id=60136231&iu=/4140/ostg.clktrk