Redhat AS3 bug 11681: Invalid ICMP type 11 message

发表于:2007-05-26来源:作者:点击数: 标签:
服务器console的屏幕上一直会有这样的信息刷屏(这个信息作为kernel日志写入了/var/log/messages文件中): sent an invalid ICMP type 11, code 0 error to a broadcast: 这个问题其实很早就发现了,只是一直不以为意,今

服务器console的屏幕上一直会有这样的信息刷屏(这个信息作为kernel日志写入了/var/log/messages文件中): sent an invalid ICMP type 11, code 0 error to a broadcast:



google 这些关键字sent an invalid "icmp type 11"


I don't know what's going on either, but I added the line:
net.ipv4.icmp_ignore_bogus_error_responses = 1
to /etc/sysctl.conf, which doesn't deal with the underlying cause
(whatever it is) but does get the kernel to shut up about it and stop
flooding the logs. I haven't noticed any ill effects so far.



I've also seen this on 2.4.21-4.EL. The problem is that you have
some device on that incorrectly sends a ICMP time
exceeded response to broadcasts where ttl == 0. The linux kernel
reports such bogus messages in the system log by default.
The code that actually does the logging was updated to be more
verbose sometime between 2.4.19 and 2.4.21 I think, but unfortunately
the update introduced a bug so that the log message incorrectly list
the destination address as the source address of the bogus message !
So you cannot find the bad device with the information in the log
message. You have to use a network packet sniffer instead.
To get the correct address of the bad packet the kernel must be fixed
(see included mail below)
You can also try to find the bad device with send out the packages
It is also possible to turnoff logging of bad ICMP packages in the
linux kernel if you just think the messages are annoying.

# /sbin/sysctl –w net.ipv4.icmp_ignore_bogus_error_response=1

or put it in /etc/sysctl.conf if you want it if permanently.


