Table Of Contents
Numerics - A - B - C - D - E - F - H - I - L - M - N - O - P - Q - R - S - T - U - V - W - X -
Index
Numerics
4GE SSM 44 to 54
A
AAA
authentication 37, 38, 39, 348
authorization 29
messages 24, 25, 27, 28, 29, 30, 36, 37, 38, 39, 40, 134, 135, 148, 190, 216
server 29, 30, 39, 134, 135, 190, 215, 347, 348
ABR
without backbone area 95
access denied
URL 83
access-list command 14, 19, 81, 339
deny-flow-max option 20
interval option 19
log option 19
omitting 27
to permit traffic on UDP port 53 14, 19, 81, 339
access-list deny-flow-max command 20
access lists
See ACLs
access permitted 222
access requested 222
ACLs
ACL_ID 305
compilation out of memory 18
configuration error 28
crypto map 129, 235
deny 81
deny-flows 20
empty ACL downloaded 27
failed check 29
logging matches 19
no ACL configured 267
packet denied 18
parsing error 27
peer context ID 339
peer IP address not set 339
proxy ID mismatch 267
SoftNP error 341, 342
split tunneling policy 248
unsupported format 40
WebVPN
ACL ID not found 347
parse error 297, 298, 347
user authorization failure 347
ActiveX object, filtering 178
address translation slots 139
no more available 61, 138, 139
address translation slots, no more available 61
area border router
See ABR
ARP packet mismatch 138
ARP poisoning attack 138
ARP spoofing attack 99
asymmetric routing 17
attacks
ARP poisoning 138
ARP spoofing 99
DNS HINFO request 125
DNS request for all records 126
DNS zone transfer 126
DNS zone transfer from high port 126
DoS 20, 27, 63, 138, 143
fragmented ICMP traffic 125
IP fragment 125
IP fragments overlap 125
IP impossible packet 125
IP routing table 20
land 16
large ICMP traffic 125
man in the middle 97
ping of death 125
proxied RPC request 126
spoofing 16, 17, 99, 139
statd buffer overflow 126
suspicious e-mail address pattern 21
SYN 57
TCP FIN only flags 125
TCP NULL flags 125
TCP SYN+FIN flags 125
UDP bomb 125
UDP chargen DoS 125
UDP snork 125
Authen Session End 26
authentication
failed 25
request 190
request succeeds 24
response 190
server not found 24
Auth from IP address/port to IP address/port failed 24
authorization
command 200
user 201
user denied 25
Auth start for user 24
Auto Update URL unreachable 208
B
backup server list
downloaded 204
error 205
bandwidth
reported as zero 209
bridge table
full 152
broadcast, invalid source address 16
bufferwraps
save to Flash 5
save to interal Flash 13
send to FTP server 13
built H245 connection 75
C
cannot specify PAT host 15
class
filtering messages by 15
message class variables 16
types 16
clear command
local-host option 143
clearing configuration settings 21
conduit command
permit ICMP option 15
config command 34
configuration 16
clearing settings 21
erase 34
replication
beginning 221
failed 220
status changed 152
configure command 34
connection limit exceeded 57, 58, 223
connection message 13, 14, 75
CTIQBE
connection object pre-allocation 212
unsupported version 212
D
deny
inbound from outside 14
inbound ICMP 15
inbound UDP 13
inbound UDP due to query/response 14
IP from address to address 14
IP spoof 16
self route 14
TCP (no connection) 15
detecting use of Internet phone 75
device ID, including in messages 19
device pass through
disabled 207
enabled 207
disabling messages, specific message IDs 20
DNS HINFO request attack 125
DNS query or response is denied 14
DNS request for all records attack 126
DNS server too slow 14
DNS zone transfer attack 126
DNS zone transfer from high port attack 126
DoS attack 20, 27, 63, 143
dropping echo request 15
E
Easy VPN Remote
backup server list
downloaded 204
error 205
device pass through
disabled 207
enabled 207
load balancing cluster
disconnected 205
redirected 205
split network entry duplicate 207
SUA
disabled 206, 207
enabled 205
user authentication
disabled 206
enabled 206
XAUTH enabled 207
EMBLEM format, using in logs 19
embryonic limit exceeded 57
F
facility
setting 8
failover
bad cable 2
block allocation failed 8
cable communication failed 8
cable not connected 2
cable status 2
configuration replication 8
configuration replication failed 222
continuous failovers 10
failed network interface 4
failover active command 356
failover command message dropped 9
incompatible software on mate 11
interface link down 11
LAN interface down 9
license mismatch with mate 12
link status up or down 7
lost communications with mate 6
mate card configuration mismatch 12
mate has different chassis 12
mate may be disabled 10
operational mode mismatch with mate 11
peer failure 4
peer LAN link down 9
power failure 2
primary unit failure 5
replication interrupted 10
show failover command 361
standby unit failed to sync 8
stateful error 64
stateful failover 64, 65, 66
VPN failover
buffer error 353
client being disabled 351
CTCP flow handle error 358
failed to allocate chunk 351
failed to initialize 349
failed to receive message from active unit 361
memory allocation error 352
non-block message not sent 354
registration failure 351
SDI node secret file failed to synchronize 362
standby unit received corrupted message from active unit 359
state update message failure 359
timer error 353
trustpoint certification failure 352
trustpoint name not found 354
unable to add to message queue 358
version control block failure 351
failover command 5, 6, 9
active option 4, 356
failover messages 1, 3, 5, 7, 221
filter allow command 84
filter command
activex option 178
allow option 84
filtering ActiveX objects 178
fixup protocol SMTP command 21
Flood Defender 216
floodguard command 25
format of messages 22
fragmented ICMP traffic attack 125
FTP
data connection failed 58
messages 83, 84
H
H.225 140
H.245 75
H.245 connection
foreign address 75
H.323 75
back-connection, preallocated 75
unsupported packet version 220
hello packet with duplicate router ID 147
hostile event 17, 128, 129, 135
firewall circumvented 17
host limit 143
host move 152
HTTPS process limit 28
I
ICMP
packet denied 15
translation creation failed 86
IDB initializatrion 96
inbound TCP connection denied 13
insufficient memory 61, 139
error caused by 61, 138
interface
PPP virtual 69
virtual 69
zero bandwidth 209
Internet phone, detecting use of 75
invalid character replaced in e-mail address 21
invalid source addresses 16
IP address
DHCP client 192
DHCP server 192
IP fragment attack 125
IP fragments overlap attack 125
IP impossible packet attack 125
IP route counter decrement failure 144
IP routing table
attack 20
creation error 94
limit exceeded 94
limit warning 94
OSPF inconsistency 95
IPSec
connection entries 242
connections 36, 37, 38, 39, 40, 316
failure 315
L2TP-over-IPSec 243
cTCP tunnel 365
encryption 280
fragmentation policy ignored 258
invalid packet 128
L2TP-over-IPSec connection 243
negotiation 234
overTCP 288
over UDP 252, 288
packet 128, 129
packet missing 128
packet triggered IKE 232
proposal
SA 292
unsupported 292
protocol 226
proxy mismatch 81
rekeying duration 237
request rejected 243
SA 234, 239, 240, 243, 281, 282, 291
proposal 292
tunnels 36, 93, 233, 257, 314, 315, 333
ip verify reverse-path command 17, 18
L
L2TP
tunnel 191
land attack 16
large ICMP traffic attack 125
Leaving ALLOW mode, URL Server 84
link state advertisement
See LSA
link status `Up' or 'Down' 7
load balancing cluster
disconnected 205
redirected 205
log bufferwraps
save to internal Flash 13
send to FTP server 13
logging
class
filtering messages by 15
types 15, 16
device-id, including in system messages 19
email
configuring as output destination 9
destination address 9
source address 9
EMBLEM format 20
facility option 8
filtering
by message list 16
by severity level 5
filtering messages
by message class 15
logging queue, configuring 18
output destinations
ASDM 10
email address 9
internal buffer 5
syslog server 7, 8
Telnet or SSH session 5
queue
changing the size of 18
configuring 18
viewing queue statistics 18
severity level
changing 21
timestamp, including 18
logging queue
configuring 18
log output destinations
ASDM 10
email address 9
internal buffer 5
syslog server 5
Telnet or SSH session 5
loopback network, invalid source address 16
lost failover communications with mate 6
low memory 93
failed operation 93
LSA
default with wrong mask 146
invalid type 146
not found 95
M
MAC address mismatch 139
man in the middle attack 97
memory
block depleted 8
corruption 208
insufficient 61, 139
leak 95
low 93
message block alloc failed 8
message classes
about 15
list of 16
message list
creating 17
filtering by 16
messages
alert log 20
component descriptions 22
connection-related 14, 57, 58, 75
format of 22
FTP ?? to 84
Mail Guard 21
severity levels 23
list of 23
SNMP 67
SSH 93
stateful failover 64, 65, 66
variables used in 22, 23
message severity levels
list of 23
MIBs 1
Microsoft Point-to-Point Encryption
See MPPE
module management 34
monitoring
SNMP 1
MPPE
encryption policy setup 134, 135
MS-CHAP 134
authentication 134
N
nat command 85
no associated connection within connection table 15
no authentication server found 24
no translation group found 85
O
OSPF
ABR without backbone area 95
checksum error 208
configuration change 209
database description from unknown neighbor 145
database request from unknown neighbor 145
hello from unknown neighbor 145
hello packet with duplicate router ID 147
IDB initializatrion 96
invalid packet 145
IP routing table inconsistency 95
LSA
default with wrong mask 146
invalid type 146
not found 95
neighbor state changed 180
network range area changed 209
packet of invalid length 146
process reset 96
router ID allocation failure 147
router-id reset 96
virtual links 96
outbound deny command 13
out of address translation slots! 61
output destinations 5
e-mail address 5, 9
internal buffer 5
SNMP management station 5
specifying 9
syslog server 5, 7
Telnet or SSH session 5
viewing logs 7
P
packet
denied 13, 14, 15, 18
integrity check 14
not matched outbound NAT rules 85
PAT
address 61, 138, 139
global address 15
host unspecified 15
ping of death attack 125
power failure, failover 2
PPP virtual interface 69
PPTP
packet out of sequence 190
tunnel 69, 191
XGRE packet 133
preallocate H323 UDP back connection 75
privilege level, changed 179, 180
proxied RPC request attack 126
Q
queue, logging
changing the size of 18
viewing statistics 18
R
RADIUS authentication 134
RCMD, back connection failed 58
rebuilt TCP connection 76
reload command 34, 54
request discarded 223
router ID allocation failure 147
router-ID reset 96
rsh command 58
S
security
breach 14
context
added 181
context cannot be determined 18, 19
removed 181
parameters index
See SPI
self route 14
SETUP message 140
severity levels, of system messages
changing 5
definition 23
filtering by 5
list of 23
show command
blocks option 8
failover option 66, 361
local-host option 143
outbound option 13
static option 57, 58
version option 143
show static command 57
shuns 127
SIP connection 195
skinny connection 197
SMTP 21
SNMP
management station 5
MIBs 1
overview 1
traps 2
SPI 128
split network entry duplicate 207
spoofing attack 16, 17, 139
SSH 93
SSM 4GE 44 to 54
statd buffer overflow attack 126
stateful failover 64, 65, 66
SUA
disabled 206
enabled 205
SYN 15
attack 57
flag 15
syslog server
as output destination 7
designating 7
designating more than one 8
EMBLEM format
configuring 19
enabling 7
system messages
classes of 15
list of classes 16
configuring in groups
by message list 16
by severity level 5
creating lists of 15
device ID, including 19
disabling logging of 5
filtering
by message class 15
managing in groups
by message class 15
creating a message list 15
output destinations 5
email address 9
internal buffer 5
syslog message server 5
Telnet or SSH session 5
severity levels 23
changing the severity level of a message 5
timestamp, including 18
T
TCP
access permitted 222
access requested 222
connection limit exceeded 223
connections 222
incorrect header length 178
no associated connection in table 15
request discarded 223
translation creation failed 86
TCP FIN only flags attack 125
TCP NULL flags attack 125
TCP SYN+FIN flags attack 125
testing
interface 7
timeouts, recommended values 143
timeout uauth command 26
timestamp, including in system messages 18
too many connections on static 57
traps, SNMP 2
tunnel, PPTP 69
U
UDP
access permitted 222
bomb attack 125
chargen DoS attack 125
connections 222
messages 85
packet 14
request discarded 223
snork attack 125
translation creation failed 86
URL
buffer block space 85
filtering, disabled 84
Server 83
user authentication
disabled 206
enabled 206
error 28
user logged out 202
username
created 179
deleted 179
V
variables
in messages 22, 23
list of 23
viewing logs 7
virtual interface 69
virtual links 96
vpdn group command 134
VPN
peer limit 93
tunnel 93
VPN failover
client being disabled 351
CTCP flow handle error 358
failed to allocate chunk 351
failed to initialize 349
failed to receive message from active unit 361
memory allocation error 352
non-block message not sent 354
registration failure 351
SDI node secret file failed to synchronize 362
standby unit received corrupted message from active unit 359
state update message failure 359
timer error 353
trustpoint certification failure 352
trustpoint name not found 354
unable to add to message queue 358
version control block failure 351
W
web requests, unfiltered 84
Websense server 83, 84
write command 34
erase option 34
standby command 66
standby option 65
write erase command 34
X
XAUTH enabled 207
XGRE, packet with invalid protocol field 133