1. Home
    2. /
  2. Manuals
    3. /
  3. Zyxel
    4. /
  4. P-2602HW-D1A
    5. /
  5. 78
Page 386 / 427 Scroll up to view Page 381 - 385
P-2602H(W)(L)-DxA Series User’s Guide
386
Appendix I Log Descriptions
ip spoofing - no routing
entry ICMP (type:%d,
code:%d)
The firewall classified an ICMP packet with no source routing entry
as an IP spoofing attack.
vulnerability ICMP
(type:%d, code:%d)
The firewall detected an ICMP vulnerability attack.
traceroute ICMP (type:%d,
code:%d)
The firewall detected an ICMP traceroute attack.
Table 163
802.1X Logs
LOG MESSAGE
DESCRIPTION
Local User Database accepts
user.
A user was authenticated by the local user database.
Local User Database reports user
credential error.
A user was not authenticated by the local user database
because of an incorrect user password.
Local User Database does not
find user`s credential.
A user was not authenticated by the local user database
because the user is not listed in the local user database.
RADIUS accepts user.
A user was authenticated by the RADIUS Server.
RADIUS rejects user. Pls check
RADIUS Server.
A user was not authenticated by the RADIUS Server.
Please check the RADIUS Server.
Local User Database does not
support authentication method.
The local user database only supports the EAP-MD5
method. A user tried to use another authentication
method and was not authenticated.
User logout because of session
timeout expired.
The router logged out a user whose session expired.
User logout because of user
deassociation.
The router logged out a user who ended the session.
User logout because of no
authentication response from
user.
The router logged out a user from which there was no
authentication response.
User logout because of idle
timeout expired.
The router logged out a user whose idle timeout period
expired.
User logout because of user
request.
A user logged out.
Local User Database does not
support authentication method.
A user tried to use an authentication method that the local
user database does not support (it only supports EAP-
MD5).
No response from RADIUS. Pls
check RADIUS Server.
There is no response message from the RADIUS server,
please check the RADIUS server.
Use Local User Database to
authenticate user.
The local user database is operating as the
authentication server.
Use RADIUS to authenticate user.
The RADIUS server is operating as the authentication
server.
Table 162
Attack Logs (continued)
LOG MESSAGE
DESCRIPTION
Page 387 / 427
P-2602H(W)(L)-DxA Series User’s Guide
Appendix I Log Descriptions
387
No Server to authenticate user.
There is no authentication server to authenticate a user.
Local User Database does not
find user`s credential.
A user was not authenticated by the local user database
because the user is not listed in the local user database.
Table 164
ACL Setting Notes
PACKET DIRECTION
DIRECTION
DESCRIPTION
(L to W)
LAN to WAN
ACL set for packets traveling from the LAN to the WAN.
(W to L)
WAN to LAN
ACL set for packets traveling from the WAN to the LAN.
(L to L/ZyXEL Device)
LAN to LAN/
ZyXEL Device
ACL set for packets traveling from the LAN to the LAN or
the ZyXEL Device.
(W to W/ZyXEL
Device)
WAN to WAN/
ZyXEL Device
ACL set for packets traveling from the WAN to the WAN
or the ZyXEL Device.
Table 165
ICMP Notes
TYPE
CODE
DESCRIPTION
0
Echo Reply
0
Echo reply message
3
Destination Unreachable
0
Net unreachable
1
Host unreachable
2
Protocol unreachable
3
Port unreachable
4
A packet that needed fragmentation was dropped because it was set to Don't
Fragment (DF)
5
Source route failed
4
Source Quench
0
A gateway may discard internet datagrams if it does not have the buffer space
needed to queue the datagrams for output to the next network on the route to
the destination network.
5
Redirect
0
Redirect datagrams for the Network
1
Redirect datagrams for the Host
2
Redirect datagrams for the Type of Service and Network
3
Redirect datagrams for the Type of Service and Host
8
Echo
0
Echo message
Table 163
802.1X Logs (continued)
LOG MESSAGE
DESCRIPTION
Page 388 / 427
P-2602H(W)(L)-DxA Series User’s Guide
388
Appendix I Log Descriptions
11
Time Exceeded
0
Time to live exceeded in transit
1
Fragment reassembly time exceeded
12
Parameter Problem
0
Pointer indicates the error
13
Timestamp
0
Timestamp request message
14
Timestamp Reply
0
Timestamp reply message
15
Information Request
0
Information request message
16
Information Reply
0
Information reply message
Table 166
Syslog Logs
LOG MESSAGE
DESCRIPTION
<Facility*8 + Severity>Mon dd
hr:mm:ss hostname
src="<srcIP:srcPort>"
dst="<dstIP:dstPort>"
msg="<msg>" note="<note>"
devID="<mac address last three
numbers>" cat="<category>
"This message is sent by the system ("RAS" displays as the
system name if you haven’t configured one) when the router
generates a syslog. The facility is defined in the web MAIN
MENU->LOGS->Log Settings page. The severity is the
log’s syslog class. The definition of messages and notes
are defined in the various log charts throughout this
appendix. The “devID” is the last three characters of the
MAC address of the router’s LAN port. The “cat” is the same
as the category in the router’s logs.
Table 167
SIP Logs
LOG MESSAGE
DESCRIPTION
SIP Registration Success
by SIP:SIP Phone Number
The listed SIP account was successfully registered with a SIP
register server.
SIP Registration Fail by
SIP:SIP Phone Number
An attempt to register the listed SIP account with a SIP register
server was not successful.
SIP UnRegistration
Success by SIP:SIP Phone
Number
The listed SIP account’s registration was deleted from the SIP
register server.
SIP UnRegistration Fail by
SIP:SIP Phone Number
An attempt to delete the listed SIP account’s registration from the
SIP register server failed.
Table 165
ICMP Notes (continued)
TYPE
CODE
DESCRIPTION
Page 389 / 427
P-2602H(W)(L)-DxA Series User’s Guide
Appendix I Log Descriptions
389
Table 168
RTP Logs
LOG MESSAGE
DESCRIPTION
Error, RTP init fail
The initialization of an RTP session failed.
Error, Call fail: RTP
connect fail
A VoIP phone call failed because the RTP session could not be
established.
Error, RTP connection
cannot close
The termination of an RTP session failed.
Table 169
FSM Logs: Caller Side
LOG MESSAGE
DESCRIPTION
VoIP Call Start Ph[Phone
Port Number] <- Outgoing
Call Number
Someone used a phone connected to the listed phone port to
initiate a VoIP call to
the listed destination.
VoIP Call Established
Ph[Phone Port] -> Outgoing
Call Number
Someone used a phone connected to the listed phone port to
make a VoIP call to the listed destination.
VoIP Call End Phone[Phone
Port]
A VoIP phone call made from a phone connected to the listed
phone port has terminated.
Table 170
FSM Logs: Callee Side
LOG MESSAGE
DESCRIPTION
VoIP Call Start from
SIP[SIP Port Number]
A VoIP phone call came to the ZyXEL Device from the listed SIP
number.
VoIP Call Established
Ph[Phone Port] <- Outgoing
Call Number
A VoIP phone call was set up from the listed SIP number to the
ZyXEL Device.
VoIP Call End Phone[Phone
Port]
A VoIP phone call that came into the ZyXEL Device has
terminated.
Table 171
PSTN Logs
LOG MESSAGE
DESCRIPTION
PSTN Call Start
A PSTN call has been initiated.
PSTN Call End
A PSTN call has terminated.
PSTN Call Established
A PSTN call has been set up.
Page 390 / 427
P-2602H(W)(L)-DxA Series User’s Guide
390
Appendix I Log Descriptions
The following table shows RFC-2408 ISAKMP payload types that the log displays. Please
refer to RFC 2408 for detailed information on each type.
Log Commands
Go to the command interpreter interface (
Appendix J on page 393
explains how to access and
use the commands).
Configuring What You Want the ZyXEL Device to Log
1
Use the
sys logs load
command to load the log setting buffer that allows you to
configure which logs the ZyXEL Device is to record.
2
Use
sys logs category
to view a list of the log categories.
Figure 221
Displaying Log Categories Example
3
Use
sys logs category
followed by a log category to display the parameters that are
available for the category.
Table 172
RFC-2408 ISAKMP Payload Types
LOG DISPLAY
PAYLOAD TYPE
SA
Security Association
PROP
Proposal
TRANS
Transform
KE
Key Exchange
ID
Identification
CER
Certificate
CER_REQ
Certificate Request
HASH
Hash
SIG
Signature
NONCE
Nonce
NOTFY
Notification
DEL
Delete
VID
Vendor ID
Copyright (c) 1994 - 2004 ZyXEL Communications Corp.
ras> ?
Valid commands are:
sys
exit
ether
wan
wlan
ip
bridge
lan
radius
8021x
dsp
voiceradius
8021x
ras>

Rate

3.5 / 5 based on 2 votes.

Popular Zyxel Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top