similar to: kernel: martian

Displaying 20 results from an estimated 1000 matches similar to: "kernel: martian"

2008 May 29
1
shorewall & ipsec rules with "FORWARD:DROP" packets
I have been working really hard configuring and researching very extensively, trying to figure why we are getting "Shorewall:FORWARD:DROP" packets. IPSEC works just fine without the iptable rules created by our shorewall configs but when starting shorewall and creating the iptables I noticed the packets are dropped. I know it is a config situation but I am totally racking my brain as
2008 Feb 29
5
shorewall-perl not handling "logmartians" correctly
I''ve set up a simple 2-interface Linux router using shorewall-perl 4.0.8 (and upgraded to 4.0.9). Everything works flawlessly. One small exception I have noticed (since I''m a new shorewall user I assume this is probably an error on my part). 1. Problem: With no "logmartians" entries in /etc/shorewall/interfaces, shorewall-perl sets
2008 Jan 27
18
Reporting Analisysing program
Anybody knows some graphic reporting/analysing program for shorewall 4.0.7 or i have to do it by accounting? -- Javier Martínez Technical Manager ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
2007 Nov 23
14
Port 3001 still have problem
Hello, We are using shorewall-3.0.7-1, I was tried the video conference server doesn''t via shorewall that was no problem, can I upgrade shorewall version to fix this problem ? our boss need use video conference this few days, so this is emergency. Thx ~~ --------------------------------- Yahoo! 網上安全攻略,教你如何防範黑客! 了解更多
2007 Sep 11
3
BLocm Amule
Hi peploe, i am new in the list, i need know, how blocked the Amule/emule in shorewall? My dist. debian version: 3.2.6-shorewall -- .~. / v \ Seja Livre, use GNU/Linux! /( )\ ^^-^^ ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005.
2007 Sep 12
21
MultiISP: failover and dynamic IP
Dear list, Shorewall is running here with 2 ISP''s: ISP1: corporate ADSL-line with fixed set of IP''s ISP2: fast consumer-grade cable-connection with higher bandwidth All our main traffic (web, e-mail) is routed trough ISP1. Only for special purposes (frequent large ftp-transfers) ISP2 is used, configured trough tcrules. ISP2 is not so reliable as ISP1 (duh) and they sometimes
2008 Mar 13
15
using norfc1918
Hello Tom. Sorry, don't answer on my previouse letter, i forget to set subject. I fix this in current. And now about my question. I ask you before about method of stopping RFC1918 traffic on external interface and you advised me follow rule: REJECT! all net:$RFC1918_NETS Can i replace this rule by 'norfc1918' option in 'interfaces' file for this interface?
2007 Nov 20
11
rfc1918 on external interface
Please, help me. Can i forbid and how any outgoing traffic (ping,trace) to rfc1918 networks on my external interfaces? Thank you very much. Aleksandr -------------------- Продукция AcmePower - это зарядные устройства, аккумуляторы формата АА и ААА, сетевые адаптеры, аккумуляторные батареи для фото и видеокамер, ноутбуков и PDA. Гарантия минского сервисного центра.
2012 Jul 31
11
A lot of kernel martian source messages in /var/log/messages
Hi all: I see a lot of the errors below in /var/log/messages on my firewall: Aug 1 00:47:44 munin kernel: [109008.257109] martian source 192.168.1.5 from 127.0.0.1, on dev eth1 Aug 1 00:48:44 munin kernel: [109068.257384] martian source 192.168.1.5 from 127.0.0.1, on dev eth1 Aug 1 00:49:44 munin kernel: [109128.257509] martian source 192.168.1.5 from 127.0.0.1, on dev eth1 Aug 1 00:50:44
2007 Nov 21
9
Trouble with DNAT After Upgrade
I''ve upgraded a 3-interface system from 2.0.8 to 3.2.6 on Debian, and I''m not able to make DNAT work anymore. If someone could offer a suggestion of where to look to fix this, it would be very much appreciated. Problem Summary: If I set DETECT_DNAT_IPADDRS=Yes, then I can''t access anything on my DMZ via DNAT. If I set DETECT_DNAT_IPADDRS=No, then **EVERYTHING**
2007 Nov 21
9
Trouble with DNAT After Upgrade
I''ve upgraded a 3-interface system from 2.0.8 to 3.2.6 on Debian, and I''m not able to make DNAT work anymore. If someone could offer a suggestion of where to look to fix this, it would be very much appreciated. Problem Summary: If I set DETECT_DNAT_IPADDRS=Yes, then I can''t access anything on my DMZ via DNAT. If I set DETECT_DNAT_IPADDRS=No, then **EVERYTHING**
2008 Feb 18
9
Advice on vlans and pppoe
My telco is moving to feeding me over fiber, breaking out with a media converter to one Ethernet interface. At present, I am retaining the static feed over copper on eth0, and taking the two new feeds via vlans on eth1. I have configured the static IP feed on eth1:790 as vlan 790, and that seems to be fine, and eth1:780 as the PPPOE feed, and brought up PPPOE to give me an IP, that is
2012 May 16
1
ARP requests are interpreted as a martian
Shorewall 4.5.1.1 I have 5 interfaces on a centos box, the first two are internal on two different subnets, the next two are two different ISP''s and the last one is a private network for testing and administration. The second internal subnet (eth1) is rejecting all the arp requests to it and I get the following in the log files ever second or two - May 16 05:28:54 services kernel:
2007 Nov 27
4
L7-Filter
Hi! How I can use L7-Filter (http://l7-filter.sourceforge.net/) with Shorewall? Thank you very much! Bye. ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
2008 Jan 31
10
QoS Sample config ?
Hi I am search a sample config for my linux box: Shorewall 3.2.3 Eth0 => Internet Access 4Mbits on ethernet Eth1 => Lan Eth2 => Lan 2 Eth3 => Lan 3 i want limit the internet access: Eth1 = 2 Mbits Eth2 = 0,5 Mbits Eth3 = 1,5 Mbits but if eth1 don''t use 2 Mbits other lan can use it anyone have a simple sample config for help me ? Thanks bye
2004 Nov 26
5
Martian sources...
We are seeing the following in our logs: Nov 25 16:21:41 fw kernel: martian source 139.142.66.253 from 10.0.0.199, on dev eth0 Nov 25 16:21:41 fw kernel: ll header: 00:a0:c9:60:0e:b2:00:02:7e:21:0e:dc:08:00 00:a0:c9:60:0e:b2 is the mac of our firewall interface on IP 139.142.66.253. 00:02:7e:21:0e:dc is the mac of our Cisco router on IP 10.0.0.1 10.0.0.199 is a Cisco switch - we have about
2008 Mar 10
2
When starting shorewall its display rfc1981 error
Hello , The folllowing is the error problem: Validating interfaces file... ERROR: The ''norfc1918'' option may not be specified on an interface with an RFC 1918 address. Interface:eth2 The shorewall interface file: net eth2 detect tcpflags,routefilter,norfc1918,nosmurfs,logmartians P.S. I tried to remove norfc1918 from interface
2008 Jan 17
16
Local network rejecting traffic
Hello! I have this situation / interfaces: Dsl0 - internet interface Eth0 - local network I have linux box with shorewall 2.2. And on the local network I also have a hardware router. I have connected WAN port with settings of my linux box and then created one more local network behind hardware router. It works fine. I then wanted to use VPN function of this hardware router, so i created
2008 May 23
5
Shorewall is eating my Asterisk egress traffic
I have four-interface Shorewall config set up. The "dmz" interface is bridged with "net" so I can assign public IP''s to the servers in the DMZ. I opted to do this rather than SNAT or ARP proxying because one of the servers runs Asterisk and SIP and NAT don''t always work well together. Somehow, my firewall config is causing a one-way audio problem in
2008 Feb 25
3
shorewall 4 installation requirements
Are shorewall-shell and shorewall-common required at compile time even if one only wishes to use shorewall-perl (4.0.9)? ____________________________________________________________________________________ Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ