beautypg.com

Udp packets log, Icmp type logs – Brocade Mobility RFS Controller CLI Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Page 1337

background image

Brocade Mobility RFS Controller CLI Reference Guide

1329

53-1003098-01

29

NOTE

The same terminology is used across all logs.

The Data Connection in Active Mode

Feb 07 11:10:19 2013: %DATAPLANE-5-LOGRULEHIT: Matched Temporary Rule of FTP ALG.
Disposition:Allow Packet Src MAC:<00-11-25-14-D9-E2> Dst MAC:<00-15-70-81-91-6A>
Ethertype:0x0800 Src IP:192.168.2.102 Dst IP:192.168.1.99 Proto:6 Src Port:20 Dst Port:3017.

The Data Connection in Passive Mode

Feb 07 11:14:31 2013: %DATAPLANE-5-LOGRULEHIT: Matched Temporary Rule of FTP ALG.
Disposition:Allow Packet Src MAC:<00-19-B9-6B-DA-77> Dst MAC:<00-15-70-81-91-6A>
Ethertype:0x0800 Src IP:192.168.1.99 Dst IP:192.168.2.102 Proto:6 Src Port:3033 Dst
Port:3894.

For example,

rfs7000-37FABE(config-mac-acl-test)#permit any any log rule-precedence 25

rfs7000-37FABE(config-mac-acl-test)#

UDP packets log

In both DHCP release and DHCP renew scenarios, the destination port 67 is logged.

DHCP Release

Feb 07 11:57:43 2013: %DATAPLANE-5-LOGRULEHIT: Matched ACL:ftpuser:ip Rule:1
Disposition:Allow Packet Src MAC:<00-11-25-14-D9-E2> Dst MAC:<00-15-70-81-91-6A>
Ethertype:0x0800 Src IP:192.168.2.102 Dst IP:172.16.31.196 Proto:17 Src Port:68 Dst Port:67.

DHCP Renew

Feb 07 11:58:48 2013: %DATAPLANE-5-LOGRULEHIT: Matched ACL:ftpuser:ip Rule:1
Disposition:Allow Packet Src MAC:<00-11-25-14-D9-E2> Dst MAC:
Ethertype:0x0800 Src IP:0.0.0.0 Dst IP:255.255.255.255 Proto:17 Src Port:68 Dst Port:67.

To generate a UDP packet log, an ACL rule has to be applied to UDP packets, and logging has to be
enabled.

For example,

rfs7000-37FABE(config-ip-acl-test)#permit udp any any log rule-precedence 20

rfs7000-37FABE(config-ip-acl-test)#

ICMP type logs

The example below displays an ICMP Type as 13 and an ICMP Code as 0:

Feb 07 12:00:00 2013: %DATAPLANE-5-LOGRULEHIT: Matched ACL:ftpuser:ip Rule:0
Disposition:Allow Packet Src MAC:<00-11-25-14-D9-E2> Dst MAC:<00-15-70-81-91-6A>
Ethertype:0x0800 Src IP:192.168.2.102 Dst IP:192.168.1.103 Proto:1 ICMP Type:13 ICMP Code:0.

The below example displays an ICMP Type as 15 and an ICMP Code as 0:

See also other documents in the category Brocade Computer Accessories: