ZyXEL Communications P-2802H(W)(L)-I Series User Manual

Page 296

Advertising
background image

Chapter 22 Logs

P-2802H(W)(L)-I Series User’s Guide

296

For type and code details, see

Table 131 on page 299

.

Exceed MAX incomplete,
sent TCP RST

The router sent a TCP reset packet when the number of

incomplete connections (TCP and UDP) exceeded the user-

configured threshold. (Incomplete count is for all TCP and UDP

connections through the firewall.)Note: When the number of

incomplete connections (TCP + UDP) > “Maximum Incomplete

High”, the router sends TCP RST packets for TCP connections

and destroys TOS (firewall dynamic sessions) until incomplete

connections < “Maximum Incomplete Low”.

Access block, sent TCP
RST

The router sends a TCP RST packet and generates this log if you

turn on the firewall TCP reset mechanism (via CI command: "sys

firewall tcprst").

Table 122 Packet Filter Logs

LOG MESSAGE

DESCRIPTION

[ TCP | UDP | ICMP | IGMP |
Generic ] packet filter
matched (set: %d, rule: %d)

Attempted access matched a configured filter rule (denoted

by its set and rule number) and was blocked or forwarded

according to the rule.

Table 123 ICMP Logs

LOG MESSAGE

DESCRIPTION

Firewall default policy: ICMP
<Packet Direction>, <type:%d>,
<code:%d>

ICMP access matched the default policy and was

blocked or forwarded according to the user's setting.

Firewall rule [NOT] match: ICMP
<Packet Direction>, <rule:%d>,
<type:%d>, <code:%d>

ICMP access matched (or didn’t match) a firewall rule

(denoted by its number) and was blocked or forwarded

according to the rule.

Triangle route packet forwarded:
ICMP

The firewall allowed a triangle route session to pass

through.

Packet without a NAT table entry
blocked: ICMP

The router blocked a packet that didn’t have a

corresponding NAT table entry.

Unsupported/out-of-order ICMP:
ICMP

The firewall does not support this kind of ICMP packets

or the ICMP packets are out of order.

Router reply ICMP packet: ICMP

The router sent an ICMP reply packet to the sender.

Table 124 CDR Logs

LOG MESSAGE

DESCRIPTION

board %d line %d channel %d,
call %d, %s C01 Outgoing Call
dev=%x ch=%x %s

The router received the setup requirements for a call. “call” is

the reference (count) number of the call. “dev” is the device

type (3 is for dial-up, 6 is for PPPoE, 10 is for PPTP).

"channel" or “ch” is the call channel ID.For example,"board 0

line 0 channel 0, call 3, C01 Outgoing Call dev=6 ch=0

"Means the router has dialed to the PPPoE server 3 times.

Table 121 TCP Reset Logs (continued)

LOG MESSAGE

DESCRIPTION

Advertising
Popular Brands
Popular manuals