Appendix A Log Descriptions

Table 283 ADP Logs

LOG MESSAGE

DESCRIPTION

from <zone> to <zone>

The ZyWALL detected an anomaly in traffic traveling between the

[type=<type>] <message>

specified zones.

, Action: <action>,

The <type> = {scan-detection(<attack>) flood-detection(<attack>)

Severity: <severity>

http-inspection(<attack>) tcp-decoder(<attack>)}.

 

The <message> gives details about the attack, although the message

 

is dropped if the log is more than 128 characters.

 

The <action> is what the ZyWALL did with the packet.

 

The <severity> is the threat level (very low, low, medium, high, or

 

severe).

 

 

Enable ADP succeeded.

ADP was turned on.

Disable ADP succeeded.

ADP was turned off.

ADP rule <num> has been

The specified ADP rule has been deleted.

deleted.

 

ADP rule <num> has been

The ADP rule with the specified index number (first num) was moved

moved to <num>.

to the specified index number (second num).

New ADP rule has been

An ADP rule has been added to the end of the list.

appended.

 

ADP rule <num> has been

An ADP rule has been inserted. <num> is the number of the new rule.

inserted.

 

ADP rule <num> has been

The ADP rule of the specified number has been changed.

modified.

 

ADP profile <name> has

The ADP rule with the specified name has been removed.

been deleted.

 

ADP profile <name> has

An ADP rule’s name has been changed from first <name> to the

been changed to <name>.

second <name>.

ADP profile <name> has

An ADP profile with the specified name has been added.

been created.

 

ADP profile <name> has

The ADP rule with the specified name has been changed.

been modified.

 

Packet payload length

The ZyWALL’s ADP feature detected a packet with a length over

is over the maximum

16000 bytes.

system handle length

 

LAND attack packet.

The ZyWALL’s ADP feature detected traffic with the same IP address

Source IP is the same

set as both the source and the destination.

as Destination IP.

 

Table 284 Anti-Virus Logs

LOG MESSAGE

DESCRIPTION

Initializing Anti-Virus

The ZyWALL failed to initialize the anti-virus signatures due to an

signature reference

internal error.

table has failed.

 

Reloading Anti-Virus

The ZyWALL failed to reload the anti-virus signatures due to an

signature database has

internal error.

failed.

 

768

 

ZyWALL USG 100/200 Series User’s Guide