Netgear SRX5308 SRX5308 Reference Manual - Page 358
Other Event Logs, Session Limit Logs, Source MAC Filter Logs, Bandwidth Limit Logs
UPC - 606449065145
View all Netgear SRX5308 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 358 highlights
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Other Event Logs This section describes the log messages generated by other events such source MAC filtering, session limiting, and bandwidth limiting. For information about how to select these logs, see "Activating Notification of Events, Alerts, and Syslogs" on page 9-5. Session Limit Logs Table C-34. Other Event Logs: Session Limit Logs Message 2000 Jan 1 06:53:33 [SRX5308] [kernel] SESS_LIMIT[DROP] IN=LAN OUT=WAN SRC=192.168.11.2 DST=20.0.0.1 PROTO=TCP SPT=50709 DPT=21 Explanation When two FTP sessions are established from the same LAN host at IP address 192.168.11.2 and a session limit (SESS_LIMIT) is set as 1, the FTP packets from the second session are dropped. Recommended Action Change the session limit to 2 to prevent packets from being dropped. Source MAC Filter Logs Table C-35. Other Event Logs: Source MAC Filter Logs Message 2000 Jan 1 06:40:10 [SRX5308] [kernel] SRC_MAC_MATCH[DROP] SRC MAC = 00:12:3f:34:41:14 IN=LAN OUT=WAN SRC=192.168.11.3 DST=209.85.153.103 PROTO=ICMP TYPE=8 CODE=0 Explanation Because MAC address 00:12:3f:34:41:14 of LAN host with IP address 192.168.11.3 is filtered so that it cannot access the Internet, the packets sent by this MAC address to the Google server at address 09.85.153.103 are dropped. Recommended Action Disable source MAC filtering. Bandwidth Limit Logs Table C-36. Other Event Logs: Bandwidth Limit, Outbound Bandwidth Profile Message 2000 Jan 1 00:10:36 [SRX5308] [kernel] [BW_LIMIT_DROP] IN=LAN OUT=WAN SRC=192.168.100.2 DST=22.0.0.2 PROTO=ICMP TYPE=144 CODE=145 TC_INDEX=10 CLASSID=10:5 Explanation This log is generated when an outbound packet is dropped because the packet size exceeds the specified bandwidth limit. Recommended Action Ensure that the packet size is within the specified bandwidth limit. C-20 v1.0, April 2010 System Logs and Error Messages