User's Manual
Appendix J Log descriptions 295
BCM50a Integrated Router Configuration — Advanced
See Table 73 for type and code details.
(set:%d)
With firewall messages, this is the number of the ACL
policy set and denotes the packet's direction (see
Table 72).
With filter messages, this is the number of the filter set.
(rule:%d)
With firewall messages, the firewall rule number denotes
the number of a firewall rule within an ACL policy set.With
filter messages, this is the number of an individual filter
rule.
Router sent blocked web
site message
Triangle route packet
forwarded
The firewall allowed a triangle route session to pass
through.
Firewall sent TCP packet
in response to DoS
attack
The firewall detected a DoS attack and sent a TCP packet
in response.
Firewall sent TCP reset
packets
The firewall sent out TCP reset packets.
Packet without a NAT
table entry blocked
The router blocked a packet that did not have a
corresponding SUA/NAT table entry.
Out of order TCP
handshake packet
blocked
The router blocked a TCP handshake packet that came out
of the proper order.
Drop unsupported/
out-of-order ICMP
The BCM50a Integrated Router generates this log after it
drops an ICMP packet due to one of the following two
reasons:
1. The BCM50a Integrated Router does not support the
ICMP packet's protocol.
2. The ICMP packet is an echo reply for which there was
no corresponding echo request.
Router sent ICMP
response packet
(type:%d, code:%d)
The router sent an ICMP response packet. This packet
automatically bypasses the firewall.
Table 71 Access logs
Log Message Description