Firewall logging, Chapter 29, Chapter – Brocade Mobility RFS Controller CLI Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Brocade Mobility RFS Controller CLI Reference Guide

1327

53-1003098-01

Chapter

29

FIREWALL LOGGING

This chapter summarizes firewall logging commands in the CLI command structure.

The firewall uses logging to send system messages to one or more logging destinations, where they
can be collected, archived and reviewed.

Set the logging level to define which messages are sent to each of the target destinations.

Logging messages can be sent to any of the following destinations:

•

The firewall console

•

Telnet or SSH session to the firewall

•

A temporary buffer internal to the firewall

•

Syslog server

•

E-mail addresses

•

An FTP server

Firewall Log Terminology and Syslog Severity Levels

Abbreviation

Description

FTP

File transfer protocol

ACL

Access control list

Src MAC

Source MAC address

Dest MAC

Destination MAC address

LOGRULEHIT

ACL rule applied

PKT DROP

Packet drop

Src IP

Source IP address

Dest IP / Dst IP

Destination IP address

FWSTARTUP

Firewall enabled

DP

Destination port

SP

Source port

Matched Temporary Rule

This is a internal rule created to allow data traffic

Syslog Severity Level as Message

Severity Level as Numeric

Description

emergency

0

System is unusable

alert

1

Immediate action needed

critical 2

Critical

condition