99
NM_LOGDROP_CAT_POLICY POLICY Policy (generic). This currently
includes filterset rules, restricted
hosts, IPv6 profiles.
NM_LOGDROP_CAT_POLICY_INPUT POLICY-INPUT-GEN-DISCARD Packets destined for the CPE that
are generically discarded (we spec-
ify the packets we do want; the rest
are discarded.)
NM_LOGDROP_CAT_POLICY_WAN_MGMT POLICY-WAN-MGMT-ACCESS 1) Trying to access CPE service from
WAN side using LAN-side port
2) Trying to access CPE service from
LAN side using WAN-side IP address
3) Trying to access CPE service from
WAN side using IPv6
NM_LOGDROP_CAT_POLICY_ICMP_ECHO POLICY-ICMP-ECHO ICMP echo request discarded (more
specific than
NM_LOGDROP_CAT_ICMP_TYPE)
NM_LOGDROP_CAT_POLICY_UWC_RESTRICT POLICY-UWC-RESTRICT Packets dropped because of “Uni-
versal Wi-Fi Configuration” restric-
tions (currently unused)
NM_LOGDROP_CAT_POLICY_RESTRICTED_HO
ST
POLICY-RESTRICTED-HOST Packets dropped because of
“Restricted Host” feature (either
content or time restrictions) (cur-
rently unused)
NM_LOGDROP_CAT_POLICY_WAN_DNS_QUE
RY
POLICY-WAN-SIDE-DNS-
QUERY
DNS query packets received on a
WAN interface
NM_LOGDROP_CAT_POLICY_WAN_DHCP_TO
SRVR
POLICY-WAN-SIDE-DHCP-TO-
SRVR
DHCP Discover request received on
a WAN interface
NM_LOGDROP_CAT_POLICY_AH POLICY-IPV6-AH IPv6 packets with AH header (if so
configured)
NM_LOGDROP_CAT_POLICY_ESP POLICY-IPV6-ESP IPv6 packets with ESP header (if so
configured)
NM_LOGDROP_CAT_POLICY_DEP_HEADER POLICY-DEPRECATED-
HEADER
IPv6 packets with deprecated
header (currently this only includes
routing extension header type 0)
NM_LOGDROP_CAT_POLICY_CAPT_PORTAL POLICY-CAPTIVE-PORTAL [IPv6] packets dropped because
captive portal is enabled.
NM_LOGDROP_CAT_FLOW FLOW Packets rejected as a result of analy-
sis of multiple related packets
(generic)
NM_LOGDROP_CAT_FLOW_FLOOD FLOOD Packets rejected because of flood-
limiting
NM_LOGDROP_CAT_FLOW_PORTSCAN PORTSCAN Packets rejected because of port-
scan detection
NM_LOGDROP_CAT_FLOW_DOS_OTHER OTHER-DoS Packets rejected because of other
DoS detection. Currently this
includes downstream flows that
don't generate upstream responses
- specifically addressing IPv6 Neigh-
bor Discovery DoS attacks.
Firewall Log Messages Detail (AT&T Requirement #841)
Reason Enumeration ( C ) Log Text Representation Why the Packet Was Logged
To Next Page
Loading...
