ZyXEL Communications 5 Series User Manual

Chapter 32 Logs Screens

ZyWALL 5/35/70 Series User’s Guide

The following table shows RFC-2408 ISAKMP payload types that the log displays. Please 
refer to the RFC for detailed information on each type. 

Event Log: <Facility*8 + 

Severity>Mon dd hr:mm:ss 

hostname src="<srcIP:srcPort>" 

dst="<dstIP:dstPort>" 

ob="<0|1>" ob_mac="<mac 

address>" msg="<msg>" 

note="<note>" devID="<mac 

address>" cat="IDP" 

class="<idp class>" sid="<idp 

sid> act="<idp action>" 

count="1"

This message is sent by the device ("RAS" displays as the 
system name if you haven’t configured one) at the time 
when this syslog is generated. The facility is defined in the 
web MAIN MENU, LOGS, Log Settings page. The 
severity is the log’s syslog class. The definition of 
messages and notes are defined in the IDP log 
descriptions.

Event Log: <Facility*8 + 

Severity>Mon dd hr:mm:ss 

hostname src="<srcIP:srcPort>" 

dst="<dstIP:dstPort>" 

ob="<0|1>" ob_mac="<mac 

address>" msg="<msg>" 

note="<note>" devID="<mac 

address>" cat="Anti Spam" 

1stReIP="<IP>"

This message is sent by the device ("RAS" displays as the 
system name if you haven’t configured one) at the time 
when this syslog is generated. The facility is defined in the 
web MAIN MENU, LOGS, Log Settings page. The 
severity is the log’s syslog class. 1stReIP is the IP address 
of the first mail relay server. The definition of messages 
and notes are defined in the Anti-Spam log descriptions.

Table 197   RFC-2408 ISAKMP Payload Types

SA

Security Association

PROP

Proposal

TRANS

Transform

KE

Key Exchange

ID

Identification

CER

Certificate

CER_REQ

Certificate Request

HASH

Hash

SIG

Signature

NONCE

Nonce

NOTFY

Notification

DEL

Delete

VID

Vendor ID

Table 196   Syslog Logs (continued)