Using Syslog
December 2005 © Foundry Networks, Inc. A - 31
Notification
T
ransit ICMP in interf
ace <por
tnum>
exceeds <num> burst packets, stopping for
<num> seconds!!
Threshold parameters for ICMP transit
(through) traffic have been configured on an
interface, and the maximum burst size for
ICMP packets on the interface has been
exceeded.
The <portnum> is the port number.
The first <num> is the maximum burst size
(maximum number of packets allowed).
The second <num> is the number of
seconds during which additional ICMP
packets will be blocked on the interface.
Note: This message can occur in response
to an attempted Smurf attack.
Notificati
on
T
ransit TCP in interf
ace <por
tnum> exceeds
<num> burst packets, stopping for <num>
seconds!!
Threshold parameters for TCP transit
(through) traffic have been configured on an
interface, and the maximum burst size for
TCP packets on the interface has been
exceeded.
The <portnum> is the port number.
The first <num> is the maximum burst size
(maximum number of packets allowed).
The second <num> is the number of
seconds during which additional TCP
packets will be blocked on the interface.
Note: This message can occur in response
to an attempted TCP SYN attack.
Notification VRRP intf state changed,
intf <portnum>, vrid <virtual-router-id>,
state <vrrp-state>
A state change has occurred in a Virtual
Router Redundancy Protocol (VRRP)
interface.
The <portnum> is the port.
The <virtual-router-id> is the virtual router ID
(VRID) configured on the interface.
The <vrrp-state> can be one of the following:
•init
•master
•backup
• unknown
W
arning
DO
T
1X security violatio
n at por
t
<por
tnum>,
malicious mac address detected: <mac-
address>
A security violation was encountered at the
specified port number.
Table A.3: Foundry Syslog Messages (Continued)
Message Level Message Explanation
To Next Page
Loading...
