1. Home
    2. /
  2. Manuals
    3. /
  3. Motorola
    4. /
  4. Netopia-3000
    5. /
  5. 23
Page 111 / 351 Scroll up to view Page 106 - 110
111
Configure
Link:
System
The
System Name
defaults to your Gateway's factory identifier combined with its serial
number. Some cable-oriented Service Providers use the System Name as an important
identification and support parameter.
The System Name can be 1 – 255 characters long; it can include embedded spaces and
special characters.
The
Log Message Level
alters the severity at which messages are collected in the Gate-
way's system log. Do not alter this field unless instructed by your Support representative.
Link:
Syslog P
arameter
s
You can configure a UNIX-compatible syslog client to report a number of subsets of the
events entered in the Gateway’s WAN Event History. Syslog sends log-messages to a host
that you specify.
To enable syslog logging, click on the
Syslog P
arameter
s
link.
Check the
Syslog
checkbox. The screen expands.
Page 112 / 351
112
Syslog
: Enable syslog logging in the system.
Syslog Host Name/IP Address
: Enter the name or the IP Address of the host that
should receive syslog messages.
Facility
: From the pull-down menu, select the Syslog facility to be used by the router
when generating syslog messages. Options are
local0
through
local7
.
Log Violations
: If you check this checkbox, the Gateway will generate messages when-
ever a packet is discarded because it violates the router's security policy.
Log Access Attempts
: If you check this checkbox, the Gateway will generate mes-
sages whenever a packet attempts to access the router or tries to pass through the
router. This option is disabled by default.
Log Accepted Packets
: If you check this checkbox, the Gateway will generate mes-
sages whenever a packet accesses the router or passes through the router. This option
is disabled by default.
NOTE:
Syslog
needs to be enabled to comply with logging requirements mentioned
in The Modular Firewall Certification Criteria - Baseline Module - version 4.0
(specified by ICSA Labs).
See “Syslog Parameters” on page 111.
For more information, please go to the following URL:
http://www
.icsalabs.com/html/comm
unities/fi
re
walls/cer
tifi
cation/
criteria/Baseline
.pdf
Page 113 / 351
113
Configure
Log Event Messages
Administration Related Log Messages
1. administrative
access attempted:
This log-message is generated whenever the user attempts to access
the router's management interface.
2. administrative
access authenticated
and allowed:
This log-message is generated whenever the user attempts to access
the router's management interface and is successfully authenticated
and allowed access to the management interface.
3. administrative
access allowed:
If for some reason, a customer does not want password protection for
the management interface, this log-message is generated whenever
any user attempts to access the router's management interface and is
allowed access to the management interface.
4. administrative
access denied -
invalid user name:
This log-message is generated whenever the user tries to access the
router's management interface and authentication fails due to incor-
rect user-name.
5. administrative
access denied -
invalid password:
This log-message is generated whenever the user tries to access the
router's management interface and authentication fails due to incor-
rect password.
6. administrative
access denied - telnet
access not allowed:
This log-message is generated whenever the user tries to access the
router's Telnet management interface from a Public interface and is
not permitted since Remote Management is disabled.
7. administrative
access denied - web
access not allowed:
This log-message is generated whenever the user tries to access the
router's HTTP management interface from a Public interface and is
not permitted since Remote Management is disabled.
System Log Messages
1. Received NTP Date
and Time:
This log-message is generated whenever NTP receives Date and
time from the server.
2. EN: IP up:
This log-message is generated whenever Ethernet WAN comes up.
3. WAN: Ethernet
WAN1 activated at
100000 Kbps:
This log-message is generated when the Ethernet WAN Link is up.
4. Device Restarted:
This log-message is generated when the router has been restarted.
Page 114 / 351
114
DSL Log Messages (most common):
1. WAN: Data link
activated at <Rate>
Kbps (rx/tx)
This log message is generated when the DSL link comes up.
2.WAN: Data link
deactivated
This log message is generated when the DSL link goes down.
3. RFC1483 up
This log message is generated when RFC1483 link comes up.
4. RFC1483-<WAN-
instance>: IP down
This log message is generated when RFC1483 link goes down.
5. PPP: Channel <ID>
up Dialout Profile
name: <Profile Name>
This log message is generated when a PPP channel comes up.
6. PPP-<WAN
Instance> down:
<Reason>
This log message is generated when a PPP channel goes down. The
reason for the channel going down is displayed as well.
Access-related Log Messages
1. permitted:
This log-message is generated whenever a packet is allowed to
traverse router-interfaces or allowed to access the router itself.
2. attempt:
This log-message is generated whenever a packet attempts to
traverse router-interfaces or attempts to access the router itself.
3. dropped - violation
of security policy:
This log-message is generated whenever a packet, traversing the
router or destined to the router itself, is dropped by the firewall
because it violates the expected conditions.
4. dropped - invalid
checksum:
This log-message is generated whenever a packet, traversing the
router or destined to the router itself, is dropped because of invalid IP
checksum.
5. dropped - invalid
data length:
This log-message is generated whenever a packet, traversing the
router or destined to the router itself, is dropped because the IP length
is greater than the received packet length or if the length is too small
for an IP packet.
Page 115 / 351
115
Configure
6. dropped - frag-
mented packet:
This log-message is generated whenever a packet, traversing the
router, is dropped because it is fragmented, stateful inspection is
turned ON on the packet's transmit or receive interface, and deny-
fragment option is enabled.
7. dropped - cannot
fragment:
This log-message is generated whenever a packet traversing the
router is dropped because the packet cannot be sent without frag-
mentation, but the do not fragment bit is set.
8. dropped - no route
found:
This log-message is generated whenever a packet, traversing the
router or destined to the router itself, is dropped because no route is
found to forward the packet.
9. dropped - invalid IP
version:
This log-message is generated whenever a packet, traversing the
router or destined to the router itself, is dropped because the IP ver-
sion is not 4.
10. dropped - possi-
ble land attack:
This log-message is generated whenever a packet, traversing the
router or destined to the router itself, is dropped because the packet is
TCP/UDP packet and source IP Address and source port equals the
destination IP Address and destination port.
11. TCP SYN flood
detected:
This log-message is generated whenever a SYN packet destined to
the router's management interface is dropped because the number of
SYN-sent and SYN-receives exceeds one half the number of allow-
able connections in the router.
12. Telnet receive DoS
attack - packets
dropped:
This log-message is generated whenever TCP packets destined to
the router's telnet management interface are dropped due to over-
whelming receive data.
13. dropped - reas-
sembly timeout:
This log-message is generated whenever packets, traversing the
router or destined to the router itself, are dropped because of reas-
sembly timeout.
14. dropped - illegal
size:
This log-message is generated whenever packets, traversing the
router or destined to the router itself, are dropped during reassembly
because of illegal packet size in a fragment.
Access-related Log Messages

Rate

4.7 / 5 based on 3 votes.

Popular Motorola Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top