Chapter 5 Configuring the Router’s Security
Time
The time (based on the Router’s date and time settings) the event occurred.
Event
There are five kinds of events listed in the system log:
•Inbound Traffic - a result of an incoming packet
•Outbound Traffic - a result of an outgoing packet.
•Firewall Setup - configuration message
•WBM Login - a user logged in to WBM
•CLI Login - a user logged in to the command line interface via Telnet
Displays a textual description of the event.
Details
The “Details” column displays more information about the packet or the event, such as protocol, IP addresses, ports, etc. The following are the available event types that can be recorded in the security log:
•Firewall internal - from the firewall internal mechanism, in case this event- type is recorded, an accompanying explanation will be added.
•Firewall status changed - the firewall changed status from up to down or the vice versa, as specified in the event type description.
•STP packet - an STP (Spanning Tree Protocol) packet has been accepted/ rejected.
•Illegal packet options - the options field in the packet’s header is either illegal or forbidden.
•Fragmented packet - a fragment has been rejected.
•WinNuke protection - a WinNuke attack has been blocked.
•ICMP replay - an ICMP (Internet Control Message Protocol) replay mes-
63