Nortel 222 User Manual page 321

Table 85 Access logs
Log Message
(set:%d)
(rule:%d)
Router sent blocked web
site message
Triangle route packet
forwarded
Firewall sent TCP packet
in response to DoS
attack
Firewall sent TCP reset
packets
Packet without a NAT
table entry blocked
Out of order TCP
handshake packet
blocked
Drop unsupported/
out-of-order ICMP
Router sent ICMP
response packet
(type:%d, code:%d)
See Table 87 for type and code details.
Nortel Business Secure Router 222 Configuration — Advanced
Appendix K Log descriptions 321
Description
With firewall messages, this is the number of the ACL
policy set and denotes the packet's direction (see
Table 86).
With filter messages, this is the number of the filter set.
With firewall messages, the firewall rule number denotes
the number of a firewall rule within an ACL policy set.With
filter messages, this is the number of an individual filter
rule.
The firewall allowed a triangle route session to pass
through.
The firewall detected a DoS attack and sent a TCP packet
in response.
The firewall sent out TCP reset packets.
The router blocked a packet that did not have a
corresponding SUA/NAT table entry.
The router blocked a TCP handshake packet that came out
of the proper order.
The Business Secure Router generates this log after it
drops an ICMP packet due to one of the following two
reasons:
1. The Business Secure Router does not support the ICMP
packet's protocol.
2. The ICMP packet is an echo reply for which there was
no corresponding echo request.
The router sent an ICMP response packet. This packet
automatically bypasses the firewall.