What means "martian source"?
Hello! I just installed a DSL-Router that I finished and tested at home into the company's LAN. Only one system can reach the Internet that functions as standard-gateway for all other systems, running some Virus-Scanner on windows NT 4.x. Directly on its console internet works pretty fine but every packages sent to it from the LAN don't go through. The only message shown on the LX-gateway is: "KERNEL:... martian source ..." from the IP-adress pointing to the LAN from the virus scanner system. What does this martian source stuff mean and where does it come from? Thank you for your answer in advance. -- Freundliche Gruesse kind regards Ingo
On Sunday 29 September 2002 23:27, Ingo Doerrie wrote:
What does this martian source stuff mean and where does it come from?
Means you got your cables plugged in the wrong ports. Your inside port is wired to the internet, and your outside port is wired to your local net. -- _________________________________________________ No I Don't Yahoo! And I'm getting pretty sick of being asked if I do. _________________________________________________ John Andersen / Juneau Alaska
On Monday 30 September 2002 07:27, Ingo Doerrie wrote:
Hello!
<snip>
Only one system can reach the Internet that functions as standard-gateway for all other systems, running some Virus-Scanner on windows NT 4.x.
Directly on its console internet works pretty fine but every packages sent to it from the LAN don't go through.
The only message shown on the LX-gateway is: "KERNEL:... martian source ..." from the IP-adress pointing to the LAN from the virus scanner system.
What does this martian source stuff mean and where does it come from?
Martians are packets that shouldn't exist. If, for example, you get RFC1918 traffic coming in from the outside world, that's Martian traffic (as most network admins configure routers to stop private-network traffic escaping - external traffic goes through a NAT gateway). Since incoming Martians *could* also be hostile, it's usually a good idea to block them; and firewalls tend to do so. If you're getting Martian-blocks from LAN traffic to your gateway, I'd have to wonder if you've got your internal and external interfaces mixed up. If not, have you enabled IP masquerading (NAT) on the firewall? - because the gateway is seeing your LAN traffic either as *external* traffic (and thus blocking it as Martian), or as private-network traffic (and thus not forwarding it). Hope this helps. Gideon Hallett.
participants (3)
-
Gideon Hallett -
Ingo Doerrie -
John Andersen