Kerio Tech Firewall6 User Manual

Page 300

Advertising
background image

Chapter 22

Logs

300

The first log item is reported upon initialization of dialing.

The log always includes

WinRoute name of the dialed line (see chapter

5

). If the line is dialed from the Admin-

istration Console, the log provides this additional information

where the line was dialed from (console — Administration Console,

IP address of the client (i.e. IP address of the Administration Console),

login name of the user who sent the dial request.

Another event is logged upon a successful connection (i.e. when the line is dialed, upon

authentication on a remote server, etc.).

2.

Line disconnection (manual or automatic, performed after a certain period of idleness)

[15/Mar/2008 15:29:18] Line "Connection" hang-up,

console 127.0.0.1 - Admin

[15/Mar/2008 15:29:20] Line "Connection" disconnected,

connection time 00:15:53, 1142391 bytes received,

250404 bytes transmitted

The first log item is recorded upon reception of a hang-up request. The log provides

information about interface name, client type, IP address and username.

The second event is logged upon a successful hang-up. The log provides information

about interface name, time of connection (connection time), volume of incoming and

outgoing data in bytes (bytes received and bytes transmitted).

3.

Disconnection caused by an error (connection is dropped)

[15/Mar/2008 15:42:51] Line "Connection" dropped,

connection time 00:17:07, 1519 bytes received,

2504 bytes transmitted

The items are the same as in the previous case (the second item — the disconnected

report).

4.

Requested dialing (as a response to a DNS query)

[15/Mar/2008 15:51:27] DNS query for "www.microcom.com"

(packet UDP 192.168.1.2:4567 -> 195.146.100.100:53)

initiated dialing of line "Connection"

[15/Mar/2008 15:51:38] Line "Connection" successfully connected

The first log item is recorded upon reception of a DNS request (the DNS forwarder has not

found requested DNS record in its cache). The log provides:

DNS name from which IP address is being resolved,

description of the packet with the corresponding DNS query (protocol, source IP

address, source port, destination IP address, destination port),

name of the line to be dialed.

Advertising
Popular Brands
Popular manuals