Default Severity WARNING
Log Message The TCP <good_flag> and <bad_flag> flags are set. Dropping
Explanation The possible combinations for these flags are: SYN URG, SYN PSH,
SYN RST, SYN FIN and FIN URG.
Gateway Action drop
Recommended Action If any of these combinations should either be ignored or having the
bad flag stripped, specify this in configuration, in the "Settings" sub
system.
Revision 1
Parameters good_flag
bad_flag
Context Parameters Rule Name
Packet Buffer
2.57.7. tcp_flag_set (ID: 03300009)
Default Severity WARNING
Log Message The TCP <bad_flag> flag is set. Dropping
Explanation The TCP flag is set. Dropping packet.
Gateway Action drop
Recommended Action None.
Revision 1
Parameters bad_flag
Context Parameters Rule Name
Packet Buffer
2.57.8. unexpected_tcp_flags (ID: 03300010)
Default Severity WARNING
Log Message Unexpected tcp flags <flags> from <endpoint> during state
<state>. Dropping
Explanation Received unexpected tcp flags during a specific state. Dropping
packet.
Gateway Action drop
Recommended Action None.
Revision 1
Chapter 2: Log Message Reference
594
To Next Page
Loading...
