Explanation
Gateway Action
Recommended Action
Revision
Parameters
Context Parameters
2.24.7. intrusion_detected (ID: 01300007)
Default Severity
Log Message
Explanation
Gateway Action
Recommended Action
Revision
Parameters
Context Parameters
2.24.8. virus_detected (ID: 01300008)
Default Severity
A notice signature matched the traffic.
None
This is probably not an attack, but you may research the advisory
(searchable by the unique ID).
2
description
signatureid
idrule
ipproto
srcip
srcport
destip
destport
internalid
Rule Name
Deep Inspection
NOTICE
Intrusion detected: <description>, Signature ID=<signatureid>. ID
Rule: <idrule>. Protocol: <ipproto>. Source IP: <srcip>. Source Port:
<srcport>. Destination IP: <destip>. Destination Port: <destport>.
Internal ID: <internalid>
An attack signature matched the traffic.
None
Research the advisory (searchable by the unique ID).
2
description
signatureid
idrule
ipproto
srcip
srcport
destip
destport
internalid
Rule Name
Deep Inspection
NOTICE
293
Chapter 2: Log Message Reference