WSM Reference Guide - WatchGuard Technologies
WSM Reference Guide - WatchGuard Technologies
WSM Reference Guide - WatchGuard Technologies
- No tags were found...
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Alarm LogsPolicy AlarmsDefaultNamePolicyMessage Format Example Message Caused Byalarm_name=”WGRD_PM_BP_Alarm, alarm id, timestamp, message,policy name, source IP, destinationIP, protocol, source port,destination port, source interface,destination interface,log_type=”al”alarm_name="WGRD_PM_BP_Alarm" alarm_id="4001" time="WedMar 2 07:41:21 2005 (PST)"msg="Block"policy="WGRD_PM_BP_Policy"src_ip="24.56.20.79"dst_ip="192.168.30.164" pr="tcp/sun-rpc" src_port="1727"dst_port="111" src_intf="0-External" dst_intf="2-Optional-1"log_type="al"/These alarms are causedby events associated witheach policy.Proxy AlarmsDefaultNameProxyMessage Format Example Message Caused Byalarm_name=”Proxy”, alarm_id,time, message, source IP,destination IP, protocol, sourceport, destination port, sourceinterface destination interface,log_type=”al”alarm_name="Proxy"alarm_id="6001" time="Tue Aug 300:49:35 2004 (PST)"msg="ProxyAllow/HTTP Requestmethod match"src_ip="192.168.1.102"dst_ip="16.0.0.107" pr="tcp/smtp"src_port="1384" dst_port="25"src_intf="PPTP" dst_intf="1-Trusted" log_type="al"/These alarms are causedby events associated witheach proxy action.System AlarmsDefaultNameSystemMessage Format Example Message Caused Byalarm _name detected,message_string.System detected. [1401-0512@H]user abc failed to log in from192.168.228.226.System detected. [1401-0202@H]Number of IPSec tunnels 2500reaches max IPSec tunnels allowed.These alarms aretriggered by systemevents.<strong>Reference</strong> <strong>Guide</strong> 37