A Martian packet is an IP packet which specifies a source or destination address that is reserved for special-use by Internet Assigned Numbers Authority (IANA). If seen on the public internet, these packets cannot actually originate as claimed, or be delivered. However, certain reserved addresses can be routed using multicast, or on private networks, local links, or loopback interfaces, depending on which special-use range they fall within.
Martian packets commonly arise from IP address spoofing in denial-of-service attacks, but can also arise from network equipment malfunction or misconfiguration of a host.
The name is derived from packet from Mars, a place from which packets clearly can not originate.
Пример вставки значений в файл /etc/sysctl.conf
net.ipv4.conf.eth1.log_martians = 0 net.ipv4.conf.eth1/11.log_martians = 0
Перезаруск sysctl
:
sysctl -p
Пример cкрипта для немедленного отключения:
#!/bin/bash echo 0 > /proc/sys/net/ipv4/conf/eth0/log_martians echo 0 > /proc/sys/net/ipv4/conf/eth1/log_martians echo 0 > /proc/sys/net/ipv4/conf/eth1.11/log_martians echo 0 > /proc/sys/net/ipv4/conf/eth1.12/log_martians cat /proc/sys/net/ipv4/conf/eth0/log_martians cat /proc/sys/net/ipv4/conf/eth1/log_martians cat /proc/sys/net/ipv4/conf/eth1.11/log_martians cat /proc/sys/net/ipv4/conf/eth1.12/log_martians