2.62.41. ldap_no_working_server_found (ID: 03700424)
Default Severity
Log Message
Explanation
Gateway Action
Recommended Action
Revision
Parameters
2.62.42. no_shared_ciphers (ID: 03700500)
Default Severity
Log Message
Explanation
Gateway Action
Recommended Action
Revision
Parameters
2.62.43. disallow_clientkeyexchange (ID: 03700501)
Default Severity
Log Message
Explanation
Gateway Action
Recommended Action
NOTICE
LDAP no working server found
LDAP no working server found.
None
None.
1
SessionID
user
ERROR
SSL Handshake: No shared ciphers exists. Closing down SSL
connection
No shared ciphers were found between the client and the unit, and
the SSL connection can not be established.
ssl_close
Make sure that the client and unit share atleast one cipher.
1
client_ip
ERROR
SSL Handshake: Disallow ClientKeyExchange. Closing down SSL
connection
The SSL connection will be closed because there are not enough
resources to process any ClientKeyExchange messages at the
moment. This could be a result of SSL handshake message flooding.
This action is triggered by a system that monitors the amount of
resources that is spent on key exchanges. This system is controlled
by the advanced setting SSL_ProcessingPriority.
ssl_close
Investigate the source of this, and try to find out if it is a part of a
possible attack, or normal traffic.
633
Chapter 2: Log Message Reference