Инструменты пользователя

Инструменты сайта


martian_packet:martian_packet

Martian packet

FIXME

A Martian packet is an IP packet which specifies a source or destination address that is reserved for special-use by Internet Assigned Numbers Authority (IANA). If seen on the public internet, these packets cannot actually originate as claimed, or be delivered. However, certain reserved addresses can be routed using multicast, or on private networks, local links, or loopback interfaces, depending on which special-use range they fall within.

Martian packets commonly arise from IP address spoofing in denial-of-service attacks, but can also arise from network equipment malfunction or misconfiguration of a host.

The name is derived from packet from Mars, a place from which packets clearly can not originate.

https://en.wikipedia.org/wiki/Martian_packet

Отключение протоколирование

  • Пример вставки значений в файл /etc/sysctl.conf

    net.ipv4.conf.eth1.log_martians = 0
    net.ipv4.conf.eth1/11.log_martians = 0

    Перезаруск sysctl:

    sysctl -p
  • Пример cкрипта для немедленного отключения:

    martians-disable_log.sh
    #!/bin/bash
     
    echo 0 > /proc/sys/net/ipv4/conf/eth0/log_martians
    echo 0 > /proc/sys/net/ipv4/conf/eth1/log_martians
    echo 0 > /proc/sys/net/ipv4/conf/eth1.11/log_martians
    echo 0 > /proc/sys/net/ipv4/conf/eth1.12/log_martians
     
    cat /proc/sys/net/ipv4/conf/eth0/log_martians
    cat /proc/sys/net/ipv4/conf/eth1/log_martians
    cat /proc/sys/net/ipv4/conf/eth1.11/log_martians
    cat /proc/sys/net/ipv4/conf/eth1.12/log_martians

Ссылки

martian_packet/martian_packet.txt · Последние изменения: 2021-02-04 20:00 — GreyWolf