Log Message TLSALG: The negotiated cipher suite can not be used with the
configured certificate.
Explanation The negotiated cipher suite, which is an exportable cipher suite,
does not permit using the certificate's key to perform the key
exchange. The certificate can not be sent and the TLS ALG session
will be closed.
Gateway Action close
Recommended Action Change cipher suites and/or certificate.
Revision 1
Parameters algname
Context Parameters ALG Module Name
ALG Session ID
2.1.200. ssl_renegotiation_attempted (ID: 00200457)
Default Severity ERROR
Log Message TLSALG: SSL renegotiation attempted but not supported.
Explanation The SSL peer initiated a renegotiation. Renegotiation is however not
supported so the TLS ALG session will be closed.
Gateway Action close
Recommended Action None.
Revision 1
Parameters algname
Context Parameters ALG Module Name
ALG Session ID
2.1.201. tls_disallowed_key_exchange (ID: 00200458)
Default Severity WARNING
Log Message TLSALG: Disallowed key exchange.
Explanation The TLS ALG session will be closed because there are not enough
resources to process any TLS key exchanges at the moment. This
could be a result of TLS handshake message flooding. This action is
triggered by a system that monitors the amount of resources that is
spent on key exchanges. This system is controlled by the advanced
setting SSL_ProcessingPriority.
Gateway Action close
Recommended Action Investigate the source of this, and try to find out if it is a part of a
possible attack, or normal traffic.
Chapter 2: Log Message Reference
124
To Next Page
Loading...
