CHAPTER 9
ASP System Log Messages
This chapter describes messages with the ASP prefix. They are generated by services on
the Adaptive Services PIC (AS PIC), such as stateful firewall, Network Address Translation
(NAT), and intrusion detection service (IDS). For information about configuring system
logging for services on the AS PIC, see the Junos Services Interfaces Configuration Guide.
For information about the fields in messages with the ASP prefix, see “Interpreting
Messages Generated in Standard Format by Services on a PIC” on page 43.
ASP_COS_RULE_MATCH
System Log Message syslog-prefix error-code: proto protocol-id (protocol-name) application: application,
source-interface-nameseparatorsource-address:source-port ->
destination-addressdestination-port, event-type rule-set: rule-set-name, rule: rule-name,
term: term-name
Description A packet matched the indicated term in the indicated class-of-service (CoS) rule. If the
rule belongs to a rule set, the name of the rule set is also displayed. The matching packet
contained the indicated information about its protocol (numerical identifier and name),
application, source (logical interface name, IP address, and port number), and destination
(IP address and port number).
Type Event: This message reports an event, not an error
Severity info
Facility LOG_PFE
ASP_IDS_HOST_RATE
System Log Message Host destination-address, event-type ... rate=rate events/sec
Description The indicated event occurred at the indicated rate (events per second) for the indicated
destination IP address. The rate exceeds the intrusion detection services (IDS) threshold
configured with the 'threshold' statement at the [edit services rule <rule-name> term
<term-name> then logging] hierarchy level. This message is logged every 60 seconds
until the rate no longer exceeds the threshold.
Type Event: This message reports an event, not an error
Severity error
75Copyright © 2010, Juniper Networks, Inc.
To Next Page
Loading...
Need help?
General
