Saving log files on a server, Examples of log messages, Activation and administration – NETGEAR Cable/DSL ProSafe Firewall FR328S User Manual

FR328S ProSafe Firewall with Dial Back-Up Reference Manual v2

Managing Your Network

6-7

M-10207-01, Reference Manual v2

•

Router operation (start up, get time, etc.)

•

Known DoS attacks and Port Scans

Saving Log Files on a Server

You can choose to write the logs to a PC running a syslog program. To activate this feature, check
the Enable Syslog box and enter the IP address of the server where the log file will be written. Be
sure to click Apply to save your changes.

Examples of log messages

Following are examples of log messages. In all cases, the log entry shows the timestamp as: Day,
Year-Month-Date Hour:Minute:Second

Activation and Administration

Tue, 2002-05-21 18:48:39 - NETGEAR activated

[This entry indicates a power-up or reboot with initial time entry.]

Tue, 2002-05-21 18:55:00 - Administrator login successful - IP:192.168.0.2

Thu, 2002-05-21 18:56:58 - Administrator logout - IP:192.168.0.2

[This entry shows an administrator logging in and out from IP address 192.168.0.2.]

Tue, 2002-05-21 19:00:06 - Login screen timed out - IP:192.168.0.2

[This entry shows a time-out of the administrator login.]

Wed, 2002-05-22 22:00:19 - Log emailed

[This entry shows when the log was emailed.]

Dropped Packets

Wed, 2002-05-22 07:15:15 - TCP packet dropped - Source:64.12.47.28,4787,WAN -

Destination:134.177.0.11,21,LAN - [Inbound Default rule match]

Sun, 2002-05-22 12:50:33 - UDP packet dropped - Source:64.12.47.28,10714,WAN -

Destination:134.177.0.11,6970,LAN - [Inbound Default rule match]

Sun, 2002-05-22 21:02:53 - ICMP packet dropped - Source:64.12.47.28,0,WAN -

Destination:134.177.0.11,0,LAN - [Inbound Default rule match]

[These entries show an inbound FTP (port 21) packet, UDP packet (port 6970), and ICMP
packet (port 0) being dropped as a result of the default inbound rule, which states that all
inbound packets are denied.]