Pix syslog meldingen ( Messages 199001 to 201008 )

In Cisco , Pix Firewall , door: Martin Gepubliceerd op




Messages 199001 to 201008
\r\n
\r\nLog Message %PIX-5-199001: PIX reload command executed from IP_addr.\r\n

 

\r\n

Explanation This is a PIX Firewall Manager message. This message logs the address of the host initiating a PIX Firewall reboot with the reload command.

\r\n


\r\n
\r\nRecommended Action:
\r\nNone required.

\r\n

Log Message %PIX-6-199002: PIX startup completed. Beginning operation.

\r\n

Explanation This is a PIX Firewall Manager message. This message is logged after the PIX Firewall finishes its initial boot and Flash memory reading sequence, and is ready to begin operating normally.

\r\n

 

\r\n

------------------------------------------------------------------------

\r\n

Note If you are using the no logging message command to block syslog messages, note that this message cannot be blocked.

\r\n

------------------------------------------------------------------------

\r\n


\r\n
\r\nRecommended Action:
\r\nNone required.

\r\n

Log Message %PIX-6-199003: Reducing link MTU dec.

\r\n

Explanation This is a PIX Firewall Manager message. This message is logged when the
\r\nPIX Firewall receives a packet from the outside network that uses a larger MTU than the inside network. The PIX Firewall then sends an ICMP message to the outside host to negotiate an appropriate MTU. The log message includes the ICMP message\'s sequence number.

\r\n


\r\n
\r\nRecommended Action:
\r\nNone required.

\r\n

Log Message %PIX-6-199005: PIX Startup begin

\r\n

Explanation This message is logged when the PIX Firewall starts.

\r\n


\r\n
\r\nRecommended Action:
\r\nNone. required.

\r\n

Log Message %PIX-3-201001: Out of connections! dec/dec.

\r\n

Explanation This is a connection-related message. This message is logged when the maximum number of permitted connections has been exceeded. The two numbers reported are current connections and maximum connections permitted.

\r\n


\r\n
\r\nRecommended Action:
\r\nFirst, check inside hosts for runaway processes that are using up too many connections. The show xlate command may indicate which hosts have requested excessive numbers of connections. In addition, the PIX Firewall license structure limits the number of permitted connections. If you need to accommodate more connections, contact your Cisco Systems representative for a license with a higher connection ceiling.

\r\n

Log Message %PIX-3-201002: Too many connections on static|xlate gaddr!
\r\neconns nconns

\r\n

Explanation This is a connection-related message. This is a connection-related message. This message is logged when the maximum number of connections to the specified static address has been exceeded.

\r\n


\r\n
\r\nRecommended Action:
\r\nUse the show static command to check the limit imposed on connections to a static address. The limit is configurable.

\r\n

Log Message %PIX-2-201003: Embryonic limit exceeded neconns/elimit for
\r\nfaddr/fport (gaddr) laddr/lport

\r\n

Explanation This is a connection-related message. This message is logged when the maximum number of embryonic connections from the specified foreign address via the specified static global address to the specified local address has been exceeded. When the limit on embryonic connections is reached, the PIX Firewall attempts to accept them anyway, but puts a time limit on the connections. This allows some connections to succeed even if the PIX Firewall is very busy.

\r\n


\r\n
\r\nRecommended Action:
\r\nThis message indicates a more serious overload than message 201002. It could be caused by a SYN attack, or simply a very heavy load of legitimate traffic. Use the show static command to check the limit imposed on embryonic connections to a static address.

\r\n

Log Message %PIX-3-201005: FTP data connection failed for IP_addr.

\r\n

Explanation This is a connection-related message. This message is logged when the PIX Firewall is unable to allocate a structure to track the data connection for FTP because of insufficient memory.

\r\n


\r\n
\r\nRecommended Action:
\r\nReduce the amount of memory usage, or purchase additional memory.

\r\n

Log Message %PIX-3-201006: RCMD backconnection failed for IP_addr/port.

\r\n

Explanation This is a connection-related message. This message is logged if the PIX Firewall is unable to preallocate connections for inbound standard output for rsh commands due to insufficient memory.

\r\n


\r\n
\r\nRecommended Action:
\r\nCheck the rsh client version; the PIX Firewall only supports the Berkeley rsh. Also, reduce the amount of memory usage, or purchase additional memory.

\r\n

Log Message %PIX-3-201007: Unable to allocate new udp connections
\r\n(faddr/fport-laddr/lport)

\r\n

Explanation This is a connection-related message. This message is logged if the PIX Firewall cannot allocate new UDP connections between the specified foreign address and port and the specified local address and port, due to insufficient memory.

\r\n


\r\n
\r\nRecommended Action:
\r\nReduce the amount of memory usage, or purchase additional memory.

\r\n

Log Message %PIX-3-201008: The PIX is disallowing new connections.

\r\n

Explanation This message indicates that the PIX Firewall is set to disallow new connections.

\r\n


\r\n
\r\nRecommended Action:
\r\nNone required.

\r\n

 

RSS Twitter e-mail