Cisco IDS-4230-FE - Intrusion Detection Sys Fast Ethernet Sensor Installation And Configuration Manual page 368

System Components
Caution
Log Events
NAC Events
Cisco Intrusion Detection System Appliance and Module Installation and Configuration Guide Version 4.1
A-42
Do not confuse evError with the <error> element. evError is a type of event that
is part of the events document that is returned upon successful completion of an
event retrieval operation. The <error> element is a document root element that is
returned in the response to a failed operation (such as a control transaction).
The following is an example of an error event:
evError: eventId=1077226078696330133 severity=warning
originator:
hostId: firesafe
appName: login(pam_unix)
appInstanceId: 7475
time: 2004/03/03 17:05:56 2004/03/03 17:05:56 UTC
errorMessage: name=errSyslog session opened for user cisco by (uid=0)
Log events provide notification anytime control transactions are processed by
sensor applications.
The following is an example of a log event:
evLogTransaction: command=getVersion eventId=1077226078696330135
successful=true
originator:
hostId: sensor
appName: mainApp
appInstanceId: 1048
time: 2004/03/03 17:05:56 2004/03/03 17:05:56 UTC
requestor:
user: cids
application:
hostId: CONSOLE
appName: -cidcli
appInstanceId: 7476
NAC communicates with other IDS applications through IDIOM control
transactions and events. NAC generates evStatus events when the internal state
changes and evError events when errors are detected.
Appendix A Intrusion Detection System Architecture
78-15597-02