beautypg.com

Raw ip protocol logs – Brocade Mobility RFS Controller CLI Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Page 1339

background image

Brocade Mobility RFS Controller CLI Reference Guide

1331

53-1003098-01

29

Feb 07 12:06:00 2013: %DATAPLANE-5-ICMPPKTDROP: Dropping ICMP Packet from
192.168.2.102 to 192.168.1.103, with ProtocolNumber:1 ICMP code 0 and ICMP type 11. Reason:
ICMP dest IP does not match inner source IP.

The following example displays an ICMP type as 14 and a Code as 0:

Feb 07 12:07:00 2013: %DATAPLANE-5-ICMPPKTDROP: Dropping ICMP Packet from
192.168.1.104 to 192.168.2.102, with ProtocolNumber:1 ICMP code 0 and ICMP type 14. Reason:
no flow matching payload of ICMP Reply.

The following example displays an ICMP type as 16 and a Code as 0:

Feb 07 12:10:11 2013: %DATAPLANE-5-ICMPPKTDROP: Dropping ICMP Packet from
192.168.1.104 to 192.168.2.102, with ProtocolNumber:1 ICMP code 0 and ICMP type 16. Reason:
no flow matching payload of ICMP Reply.

To generate an ICMP log, logging has to be enabled.

For example, the following command has to be executed:

rfs7000-37FABE(config-fw-policy-default)#logging icmp-packet-drop all

rfs7000-37FABE(config-fw-policy-default)#

Raw IP Protocol logs

The following example displays a TCP header length as less than 20 bytes:

Feb 07 12:11:50 2013: %DATAPLANE-4-DOSATTACK: INVALID PACKET: TCP header length less than
20 bytes : Src IP : 192.168.2.102, Dst IP: 192.168.1.104, Src Mac: 00-11-25-14-D9-E2, Dst Mac:
00-15-70-81-91-6A, Proto = 6.

Module name is DATAPLANE

Syslog Severity level is 4

Log ID is DOSATTACK

Log Message is INVALID PACKET

Feb 07 12:12:00 2013: %DATAPLANE-5-MALFORMEDIP: Dropping IPv4 Packet from
192.168.2.102 to 192.168.1.104 Protocol Number: 6. Reason: malformed TCP header.

Module name is DATAPLANE

Syslog Severity level is 5

Log ID is MALFORMEDIP

Log Message is Dropping IPv4Packet

To generate a raw IP protocol log, logging has to be enabled.

For example, the following commands have to be executed:

rfs7000-37FABE(config-fw-policy-default)# logging verbose

rfs7000-37FABE(config-fw-policy-default)#

rfs7000-37FABE(config-fw-policy-default)# logging malformed-packet-drop all

rfs7000-37FABE(config-fw-policy-default)#

When logging verbose is enabled, the log is displayed as:

Feb 07 12:15:21 2013: %DATAPLANE-5-MALFORMEDIP: Dropping IPv4 Packet from 192.168.0.91
to 192.168.0.1 Protocol Number: 6 SrcPort: 22616 DstPort: 22616 Reason: no matching TCP flow.

See also other documents in the category Brocade Computer Accessories: