Chapter 5 Configuring the Router’s Security

Time

The time (based on the Router’s date and time settings) the event occurred.

Event

There are five kinds of events listed in the system log:

Inbound Traffic - a result of an incoming packet

Outbound Traffic - a result of an outgoing packet.

Firewall Setup - configuration message

WBM Login - a user logged in to WBM

CLI Login - a user logged in to the command line interface via Telnet

Event-Type

Displays a textual description of the event.

Details

The “Details” column displays more information about the packet or the event, such as protocol, IP addresses, ports, etc. The following are the available event types that can be recorded in the security log:

Firewall internal - from the firewall internal mechanism, in case this event- type is recorded, an accompanying explanation will be added.

Firewall status changed - the firewall changed status from up to down or the vice versa, as specified in the event type description.

STP packet - an STP (Spanning Tree Protocol) packet has been accepted/ rejected.

Illegal packet options - the options field in the packet’s header is either illegal or forbidden.

Fragmented packet - a fragment has been rejected.

WinNuke protection - a WinNuke attack has been blocked.

ICMP replay - an ICMP (Internet Control Message Protocol) replay mes-

63

Page 65
Image 65
Actiontec electronic MI408 manual Configuring the Router’s Security